Strange traffic ....

• Previous message: Trey Valenta: "Re: Nimda affecting HP LaserJet / JetDirect devices?"
• Next in thread: Paul Gear: "Re: Strange traffic ...."
• Reply: Paul Gear: "Re: Strange traffic ...."
• Reply: John Sage: "Re: Strange traffic ...."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

When i booted my firewall today, (OpenBSD machine hooked up using an cable 
modem), i saw strange traffic on my cable modem (blinking RD lights while i 
knew no traffic was coming in ....). So I logged in and ran TCPdump ... below 
are the result can anyone explain these ... ? My IP is 213.224.1xx.xxx ....

11:20:54.626314 arp who-has 213.224.100.255 tell D5E06401.kabel.telenet.be
11:20:56.686464 arp who-has 213.224.100.255 tell D5E06401.kabel.telenet.be
11:20:58.238345 arp who-has 213.224.100.255 tell D5E06401.kabel.telenet.be
11:21:00.808768 arp who-has 213.224.100.255 tell D5E06401.kabel.telenet.be
11:21:02.879542 arp who-has 213.224.100.255 tell D5E06401.kabel.telenet.be
11:21:04.290517 arp who-has 213.224.100.255 tell D5E06401.kabel.telenet.be
11:21:04.830205 arp who-has D5E06403.kabel.telenet.be tell 
D5E06401.kabel.telenet.be

-- 
<=================>
    Elie De Brauwer 

  www.de-brauwer.be
  elie@de-brauwer.be
<=================>

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

• Next message: Bryan Andersen: "[logs] Re: Yet Another Nimda Thread (YANT)"
• Previous message: Trey Valenta: "Re: Nimda affecting HP LaserJet / JetDirect devices?"
• Next in thread: Paul Gear: "Re: Strange traffic ...."
• Reply: Paul Gear: "Re: Strange traffic ...."
• Reply: John Sage: "Re: Strange traffic ...."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sat Sep 22 2001 - 17:54:09 PDT