logwatch liefert mir eine Zusammenstellung der abgewiesenen Anfragen auf Port-Nummern:
Mit whois habe ich festgestellt, daß hauptsächlich Google-Hosts die Anfragen verursachen.Listed by source hosts:
Logged 101 packets on interface eth0
From 64.233.184.84 - 5 packets to tcp(37348,37424)
From 64.233.184.94 - 19 packets to tcp(38844,39104,39326,39418,41222,41296,41314,41320)
From 64.233.184.97 - 3 packets to tcp(41066)
From 64.233.184.100 - 8 packets to tcp(45378,46390,46442)
From 64.233.184.101 - 8 packets to tcp(47314,48230,48260)
From 64.233.184.102 - 9 packets to tcp(53440,55356,55406)
From 64.233.184.103 - 1 packet to tcp(38380)
From 64.233.184.104 - 6 packets to tcp(57750,59566)
From 64.233.184.113 - 8 packets to tcp(52902,52932,53112)
From 64.233.184.120 - 4 packets to tcp(38942,39006)
From 64.233.184.132 - 2 packets to tcp(43628)
From 64.233.184.138 - 3 packets to tcp(38100)
From 64.233.184.139 - 3 packets to tcp(59570)
From 74.125.133.94 - 1 packet to tcp(50142)
From 74.125.133.100 - 3 packets to tcp(47952)
From 74.125.133.113 - 2 packets to tcp(50120)
From 78.46.93.235 - 1 packet to tcp(48738)
From 78.46.103.110 - 1 packet to tcp(37034)
From 88.198.15.197 - 1 packet to tcp(40412)
From 172.217.16.67 - 3 packets to tcp(56906)
From 172.217.18.238 - 3 packets to tcp(55068)
From 172.217.19.136 - 2 packets to tcp(49522)
From 194.250.98.161 - 2 packets to tcp(59762,59814)
From 216.58.208.194 - 1 packet to tcp(42756)
From 216.58.208.227 - 2 packets to tcp(53274)
---------------------- iptables firewall End -------------------------
Bei den Port-Nummern komme ich allerdings nicht so recht weiter.
Weiß jemand was Goggle da will?
Vielen Dank.
wckl