[Shorewall-newbies] Stand alone machine & shorewall rejects

bigL dredgemortle at sbcglobal.net
Wed Dec 10 22:56:16 PST 2003


I'm using Shorewall 1.4.8 with the stand alone rules but I keep getting 
these following rejects that look like the machine is trying to access 
another machine on the network, except that there is no network or other 
machines.  It looks like some of the rejects have to do with Overnet, 
which uses the 9211 udp (which might explain the poor performance in 
Overnet since I changed over to the new Mandrake.)



localhost kernel: Shorewall:OUTPUT:REJECT:IN= OUT=eth0 SRC=10.0.0.10 
DST=10.0.0.45 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=458 DF PROTO=TCP 
SPT=33694 DPT=19344 WINDOW=5840 RES=0x00 SYN URGP=0
Dec 10 22:27:32 localhost kernel: Shorewall:OUTPUT:REJECT:IN= OUT=eth0 
SRC=10.0.0.10 DST=10.0.0.45 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=458 DF 
PROTO=TCP SPT=33694 DPT=19344 WINDOW=5840 RES=0x00 SYN URGP=0
Dec 10 22:34:13 localhost kernel: Shorewall:OUTPUT:REJECT:IN= OUT=eth0 
SRC=10.0.0.10 DST=10.0.0.14 LEN=47 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF 
PROTO=UDP SPT=9211 DPT=12602 LEN=27
Dec 10 22:40:37 localhost kernel: Shorewall:OUTPUT:REJECT:IN= OUT=eth0 
SRC=10.0.0.10 DST=10.0.0.45 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF 
PROTO=TCP SPT=34237 DPT=19344 WINDOW=5840 RES=0x00 SYN URGP=0
Dec 10 22:40:40 localhost kernel: Shorewall:OUTPUT:REJECT:IN= OUT=eth0 
SRC=10.0.0.10 DST=10.0.0.45 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF 
PROTO=TCP SPT=34237 DPT=19344 WINDOW=5840 RES=0x00 SYN URGP=0
Dec 10 22:41:55 localhost kernel: Shorewall:OUTPUT:REJECT:IN= OUT=eth0 
SRC=10.0.0.10 DST=10.0.0.1 LEN=47 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF 
PROTO=UDP SPT=9211 DPT=5085 LEN=27

Any help would be appreciated.


More information about the Shorewall-newbies mailing list