[nos-bbs] WHY you should firewall your JNOS system :]
Jay
jjn at nuge.com
Mon Apr 17 17:20:25 EDT 2023
Greetings,
So what? There was no port open to 'listen' and process that
requested TCP session and ultimately the packet is dropped. Isn't that
exactly what a firewall does?
By having a firewall closer to the Internet from the Jnos box, the
dropping of packets is done sooner. Is JNOS unable to handle the
CPU load?
Nice to have the "no listener' feature, BTW. But can it be turned off
so we don't waste disk space and file access time, logging unneccesary
events?
--- Jay WB8TKL
On Mon, 17 Apr 2023, Maiko Langelaar (Personal) wrote:
> Good day,
>
> Just to give people an idea, new 'no listener' logging enabled ...
>
> 21:51:44 - JNOS 2.0o.2dev (Linux) was started
>
> 21:52:15 network: 120.92.194.93:44677 - no TCP (8090) listener
> 21:52:28 network: 5.8.18.8:40533 - no TCP (55792) listener
> 21:53:48 network: 94.102.61.47:44762 - no TCP (3175) listener
> 21:53:53 network: 149.18.73.222:5146 - no UDP (5060) listener
> 21:54:42 network: 94.102.61.47:32810 - no TCP (3174) listener
> 21:55:43 network: 47.95.9.97:34454 - no TCP (6379) listener
> 21:55:52 network: 89.248.165.59:40053 - no TCP (4200) listener
> 21:56:24 network: 89.248.165.221:48495 - no TCP (55047) listener
> 21:56:44 network: 89.248.165.189:45605 - no TCP (64005) listener
> 21:57:39 network: 194.26.135.31:52487 - no TCP (3573) listener
> 21:58:00 network: 121.196.11.130:56809 - no TCP (33386) listener
> 21:58:16 network: 89.248.165.14:42582 - no TCP (32310) listener
> 21:58:29 network: 167.248.133.138:2687 - no TCP (18080) listener
> 21:58:50 network: 180.182.236.146:5212 - no TCP (80) listener
> 21:58:56 network: 193.35.18.12:40648 - no TCP (1000) listener
> 21:59:05 network: 122.114.197.7:33120 - no TCP (6379) listener
>
> 21:59:26 44.135.85.151:55182 - MBOX (ve3tok) lzhuf uncompress 1040/1974 = 47
> percent
> 21:59:26 44.135.85.151:55182 - MBOX (ve3tok) 25685-CX2SA received
> 21:59:27 44.135.85.151:55182 - MBOX (ve3tok) exit
> 21:59:27 44.135.124.1:1025 - open SMTP
> 21:59:27 44.135.124.1:smtp - SMTP sent job 20033000 To [snip] ...
> 21:59:27 44.135.124.1:1025 - close SMTP
>
> 21:59:29 network: 89.248.165.22:41749 - no TCP (43593) listener
> 21:59:55 network: 78.142.18.220:54387 - no TCP (80) listener
> 22:00:13 network: 185.156.73.154:40172 - no TCP (4141) listener
> 22:00:22 network: 194.26.135.248:50743 - no TCP (3804) listener
> 22:00:29 network: 194.26.135.33:43424 - no TCP (3610) listener
> 22:00:32 network: 193.163.125.64:54098 - no TCP (32792) listener
>
> 22:02:25 44.135.92.10:5533 - MBOX (ve3cgr) $25685-CX2SA refused
> 22:02:25 44.135.92.10:5533 - MBOX (ve3cgr) exit
>
> 22:02:34 network: 89.248.163.219:45363 - no TCP (22) listener
> 22:03:10 network: 94.102.61.47:58029 - no TCP (3176) listener
> 22:03:13 network: 89.248.165.104:55643 - no TCP (230) listener
> 22:04:12 network: 92.63.197.153:50959 - no TCP (64447) listener
> 22:04:20 network: 82.156.174.194:55952 - no TCP (6379) listener
> 22:04:29 network: 89.248.165.189:45605 - no TCP (62852) listener
> 22:04:54 network: 167.94.145.27:41227 - no TCP (42015) listener
> 22:05:01 network: 80.66.77.236:48225 - no TCP (34567) listener
> 22:05:44 network: 175.178.127.23:56220 - no TCP (6379) listener
> 22:06:23 network: 193.142.146.135:61000 - no TCP (22326) listener
>
>
>
>
>
> _______________________________________________
> nos-bbs mailing list
> nos-bbs at lists.tapr.org
> http://lists.tapr.org/mailman/listinfo/nos-bbs_lists.tapr.org
>
More information about the nos-bbs
mailing list