I cannot get this through the dang firewall..
They seem to use alot of IP address, not domain name for servers.
Nothing shows up in the web filter log, but they show up as drops in the firewall packet log.
13:02:15 Default DROP UDP
172.17.2.52 : 4001
→
119.147.45.145 : 8000
len=115 ttl=127 tos=0x00 srcmac=0:f:fe:f2:97:f0 dstmac=0:1a:8c:18:4d[:D]a
13:02:15 Default DROP UDP
172.17.2.52 : 4002
→
112.90.86.233 : 8000
len=115 ttl=127 tos=0x00 srcmac=0:f:fe:f2:97:f0 dstmac=0:1a:8c:18:4d[:D]a
13:02:15 Default DROP UDP
172.17.2.52 : 4003
→
112.95.240.180 : 8000
len=115 ttl=127 tos=0x00 srcmac=0:f:fe:f2:97:f0 dstmac=0:1a:8c:18:4d[:D]a
13:02:23 Default DROP UDP
172.17.2.52 : 5000
→
180.153.217.32 : 8000
len=95 ttl=127 tos=0x00 srcmac=0:f:fe:f2:97:f0 dstmac=0:1a:8c:18:4d[:D]a
13:02:23 Default DROP UDP
172.17.2.52 : 5000
→
180.153.217.32 : 8000
len=95 ttl=127 tos=0x00 srcmac=0:f:fe:f2:97:f0 dstmac=0:1a:8c:18:4d[:D]a
13:02:28 Default DROP TCP
172.17.2.52 : 58145
→
119.188.23.47 : 8000
[SYN] len=48 ttl=127 tos=0x00 srcmac=0:f:fe:f2:97:f0 dstmac=0:1a:8c:18:4d[:D]a
13:02:28 Default DROP TCP
172.17.2.52 : 58145
→
119.188.23.47 : 8000
[SYN] len=48 ttl=127 tos=0x00 srcmac=0:f:fe:f2:97:f0 dstmac=0:1a:8c:18:4d[:D]a
13:02:30 Default DROP TCP
172.17.2.52 : 58145
→
119.188.23.47 : 8000
[SYN] len=48 ttl=127 tos=0x00 srcmac=0:f:fe:f2:97:f0 dstmac=0:1a:8c:18:4d[:D]a
13:02:30 Default DROP TCP
172.17.2.52 : 58145
→
119.188.23.47 : 8000
[SYN] len=48 ttl=127 tos=0x00 srcmac=0:f:fe:f2:97:f0 dstmac=0:1a:8c:18:4d[:D]a
13:02:37 Default DROP TCP
172.17.2.52 : 58145
→
119.188.23.47 : 8000
[SYN] len=48 ttl=127 tos=0x00 srcmac=0:f:fe:f2:97:f0 dstmac=0:1a:8c:18:4d[:D]a
This thread was automatically locked due to age.
