+ Responder ao Tópico



  1. #1
    vflaminio
    Visitante

    Padrão PORTAS TCP e UDP

    Caros, como faço para saber o que funciona na porta 4016, pq tem um ip no meu log INPUT vindo de fora pela porta UDP 1024 e passando para TCP 4016, existem vários registros desses, o que pode ser???


    Desde já agradeço!!!
    vfs

  2. #2

    Padrão Re: PORTAS TCP e UDP

    Problemas !!!

    Posta o seu script de firewall pra galera dar uma analisada !!!

    Valeu !!!



  3. #3
    vflaminio
    Visitante

    Padrão PORTAS TCP e UDP

    Ve ai pra mim, por favor, me ajuda. O que posso fazer???

    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:05 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:35 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2410:45:36 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=12.120.1.15 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=3890
    Aug2411:08:10 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=131.107.115.28 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4753
    Aug2411:02:36 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.11 DST=200.217.105.189 PROTO=UDP SPT=53 DPT=1024 PROTO=TCP SPT=80 DPT=4604
    Aug2411:02:37 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:37 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:37 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:38 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:40 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:40 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4609
    Aug2411:02:40 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4610
    Aug2411:02:40 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4611
    Aug2411:02:40 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:40 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4608
    Aug2411:02:40 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4612
    Aug2411:02:40 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4609
    Aug2411:02:40 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4610
    Aug2411:02:40 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4611
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4612
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4609
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4610
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4610
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4613
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4611
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4611
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4614
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4609
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4609
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4615
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4614
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4612
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4615
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4613
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4613
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4616
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4614
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4614
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4617
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4612
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4612
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4615
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4619
    Aug2411:02:41 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4616
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4617
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4619
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4619
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4616
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4616
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4620
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4617
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4620
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4619
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4619
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4617
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4617
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618
    Aug2411:02:42 LXproxy kernel: INPUTIPTABLES IN=ppp0 OUT= SRC=143.166.224.238 DST=200.217.105.189 PROTO=TCP SPT=80 DPT=4618

  4. #4
    Visitante

    Padrão PORTAS TCP e UDP

    O jeito mais facil de saber uma porta eh ir no google e por port numerodaporta e pronto ele te da um monte de link algum vai ter o problema nessa porta

    falows



  5. #5
    mantabodyboarder
    Visitante

    Padrão PORTAS TCP e UDP

    Segundo Dave's Port List:
    Jade, Latinus, NetSpy, Remote Administration Tool - RAT [no 2]

    No site da GLock Software tem mais informações sobre portas e os trojans e spys que as utilizam.