finding the port for "kernel: Limiting open port RST response from x to y packets/sec"
Michael Sierchio
kudzu at tenebras.com
Sat Aug 25 20:54:57 UTC 2018
On Sat, Aug 25, 2018 at 11:34 AM nusenu <nusenu-lists at riseup.net> wrote:
>
> kernel: Limiting open port RST response from xxxx to yyy packets/sec
> Is there a way to find out which specific TCP port is getting hammered
> or any other additional debug information related to these log entries?
> (the server has multiple open and publicly reachable open TCP ports)
>
You can identify and log these packets in IPFIREWALL (man ipfw).
You can also set sysctl net.inet.tcp.log_debug=1
--
"Well," Brahma said, "even after ten thousand explanations, a fool is no
wiser, but an intelligent person requires only two thousand five hundred."
- The Mahābhārata
More information about the freebsd-questions
mailing list