Emailing & denylog:

rajanderson

Emailing & denylog:

« on: August 20, 2004, 09:37:49 AM »

Hello,

New to SME - have been running for a couple of months no prob's. Our email (dialup) has started to crawl badly in last few days.

Not receiving Emails as well. Noticed in message log file messages such as this are spooled in v.large amounts :

kernel: denylog:IN=ppp0 OUT= MAC= SRC=192.35.51.30 DST=202.47.49.79 LEN=196 TOS=0x00 PREC=0x00 TTL=52 ID=0 DF PROTO=UDP SPT=53 DPT=27019 LEN=176
Aug 20 12:10:52 r2d2 kernel: denylog:IN=ppp0 OUT= MAC= SRC=192.35.51.30 DST=202.47.49.79 LEN=196 TOS=0x00 PREC=0x00 TTL=52 ID=0 DF PROTO=UDP SPT=53 DPT=45165 LEN=176
Aug 20 12:10:52 r2d2 kernel: denylog:IN=ppp0 OUT= MAC= SRC=192.33.4.12 DST=202.47.49.79 LEN=360 TOS=0x00 PREC=0x00 TTL=54 ID=56615 PROTO=UDP SPT=53 DPT=43342 LEN=340

Is this related and can anyone shed light or point me in right direction?
What antivirus packages are recommended with 6.01-01?

Thanks for any assistance.
Richard

Logged

mbachmann

Emailing & denylog:

« Reply #1 on: August 23, 2004, 12:16:20 PM »

It shows your firewall working.

/var/log/popd is the place to look at.

Antivirus: http://sme.swerts-knudsen.dk/.

Please use search on obvious questions.

Logged

rajanderson

Emailing & denylog:

« Reply #2 on: August 24, 2004, 07:45:47 AM »

Thanks for the help - didn't realise how powerfull search was!

Logged