View Full Version : [ubuntu] question about firestater's blocked events?
June 16th, 2008, 09:50 AM
When i start firestarter then i get so many attacks through different ports like 40044, 40482(most of them), 16323, etc! Should i close them? and if yes then how?
Are those attacks serious or i should just ignore them?
June 16th, 2008, 10:28 AM
How do you know it's an attack?
June 16th, 2008, 11:20 AM
Well, it says:
Hit from 220.127.116.11 detected
I assume that it's attack!
Am i wrong?
June 16th, 2008, 12:05 PM
you might be
June 16th, 2008, 12:42 PM
should i just ignore them all??
June 16th, 2008, 12:43 PM
Do a whois from the terminal
whois 18.104.22.168 for example
That'll tell you who IP its blocking.
June 17th, 2008, 09:09 AM
Not an attack.
scott@scott-desktop:~$ whois 22.214.171.124
OrgName: INSIGHT COMMUNICATIONS COMPANY, L.P.
Address: 10200 Linn Station Road
Address: Suite 125
NetRange: 126.96.36.199 - 188.8.131.52
NetType: Direct Allocation
RNOCName: Shea, John G
RTechName: Walker, Richard James
OrgNOCName: Network Operations Center
OrgTechName: Shea, John G
# ARIN WHOIS database, last updated 2008-06-16 19:10
# Enter ? for additional hints on searching ARIN's WHOIS database.
Found a referral to rwhois.insightns.com:4321.
%rwhois V-1.5:003fff:00 rwhois.insightns.com (by Network Solutions, Inc. V-184.108.40.206)
Powered by vBulletin® Version 4.2.2 Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.