[8.281][BUG][FIXED] L2TP over IPsec seen as UDP flood

The log is full of these beginning with the installation of 8.270. It's not now even though I'm connected.

2011:11:19-13:36:46 post ulogd[5037]: id="2105" severity="info" sys="SecureNet" sub="ips" name="UDP flood detected" action="UDP flood" fwrule="60013" initf="eth1" srcmac="0:14:f1:e5:A:B" dstmac="0:8:2:a4:X:Y" srcip="{Home IP}" dstip="{Astaro IP}" proto="17" length="80" tos="0x00" prec="0x00" ttl="123" srcport="1701" dstport="1701"

Cheers - Bob

Parents

0 67ef1d over 13 years ago

The log is full of these beginning with the installation of 8.270. It's not now even though I'm connected.

2011:11:19-13:36:46 post ulogd[5037]: id="2105" severity="info" sys="SecureNet" sub="ips" name="UDP flood detected" action="UDP flood" fwrule="60013" initf="eth1" srcmac="0:14:f1:e5:A:B" dstmac="0:8:2:a4:X:Y" srcip="{Home IP}" dstip="{Astaro IP}" proto="17" length="80" tos="0x00" prec="0x00" ttl="123" srcport="1701" dstport="1701"

I am a bit confused. Are you sure this didn't happen in previous releases?
AFAIK there have been no changes to flood protection.

Reply

0 67ef1d over 13 years ago

The log is full of these beginning with the installation of 8.270. It's not now even though I'm connected.

2011:11:19-13:36:46 post ulogd[5037]: id="2105" severity="info" sys="SecureNet" sub="ips" name="UDP flood detected" action="UDP flood" fwrule="60013" initf="eth1" srcmac="0:14:f1:e5:A:B" dstmac="0:8:2:a4:X:Y" srcip="{Home IP}" dstip="{Astaro IP}" proto="17" length="80" tos="0x00" prec="0x00" ttl="123" srcport="1701" dstport="1701"

I am a bit confused. Are you sure this didn't happen in previous releases?
AFAIK there have been no changes to flood protection.

Children

No Data