PF Configuration - FreeBSD Release 9.0 x64
Brandon Allbery
allbery.b at gmail.com
Tue Sep 11 15:05:43 UTC 2012
On Tue, Sep 11, 2012 at 4:26 AM, Damien Fleuriot <ml at my.gd> wrote:
> On 11 Sep 2012, at 10:15, "Shiv. Nath" <prabhpal at digital-infotech.net>
> wrote:
> > It is FreeBSD Release 9.0 x64 and i see this log very frequent almost
> every second, And i want to block this IP from reaching my server. i
> configured the PF as following but still see the same logs, it is like it
> did not work.
> >
> > Sep 11 07:49:56 titan avahi-daemon[1567]: Received response from host
> 41.211.2.239 with invalid source port 4331 on interface 'em0.0'
>
> It says it received a *response* so my understanding is *you* are trying
> to connect.
>
But it's avahi (a zeroconf implementation) so the response is to a
broadcast; the remote machine in question may also be broadcasting.
I would actually question why avahi is even enabled on a server; perhaps
the correct answer is simply to disable it in rc.conf.
--
brandon s allbery allbery.b at gmail.com
wandering unix systems administrator (available) (412) 475-9364 vm/sms
More information about the freebsd-stable
mailing list