Hi,
Can anyone help me understand what is causing these syslog messages? This is a grep
on 'denied' from the syslogs on mailhost. The external router has packet filters
which I can divulge if necessary and logs denied packets to mailhost.
ER_NAME external router name (NetBlazer)
ER_IP external router ip address
MH_IP mailhost ip address
syslog: Dec 12 10:19:11 ER_NAME syslog: IProute: packet denied by filter, src=MH_IP, dest=195.224.1.50
syslog: Dec 12 10:20:55 ER_NAME syslog: IProute: packet denied by filter, src=MH_IP, dest=195.224.1.50
syslog: Dec 12 10:21:25 ER_NAME syslog: IProute: packet denied by filter, src=MH_IP, dest=195.224.1.50
syslog: Dec 12 10:21:25 ER_NAME syslog: IProute: packet denied by filter, src=MH_IP, dest=195.224.1.50
syslog: Dec 12 10:21:55 ER_NAME syslog: IProute: packet denied by filter, src=MH_IP, dest=195.224.1.50
syslog: Dec 12 10:22:52 ER_NAME syslog: IProute: packet denied by filter, src=MH_IP, dest=195.224.1.50
syslog.2:Nov 19 11:38:27 ER_NAME syslog: IProute: packet denied by filter, src=MH_IP, dest=1.0.0.127
syslog.2:Nov 24 18:27:57 ER_NAME syslog: IProute: packet denied by filter, src=ER_IP, dest=204.178.16.6
syslog.2:Nov 24 18:27:57 ER_NAME syslog: IProute: packet denied by filter, src=ER_IP, dest=204.178.16.6
syslog.2:Nov 24 21:50:35 ER_NAME syslog: IProute: packet denied by filter, src=ER_IP, dest=204.178.16.6
syslog.3:Nov 11 12:24:29 ER_NAME syslog: IProute: packet denied by filter, src=MH_IP, dest=1.0.0.127
syslog.7:Oct 14 05:24:26 ER_NAME syslog: IProute: packet denied by filter, src=MH_IP, dest=1.0.0.127
syslog.7:Oct 14 14:53:49 ER_NAME syslog: IProute: packet denied by filter, src=MH_IP, dest=1.0.0.127
syslog.7:Oct 16 07:18:08 ER_NAME syslog: IProute: packet denied by filter, src=MH_IP, dest=1.0.0.127
Thanks,
Sam
-------------------------------
| Samuel D. Jones |
| |
| Phone: (206) 432-7855 |
| FAX: (206) 432-7832 |
| E-mail: sjones @
Aptech .
com |
-------------------------------
|
|
