For historical reasons, three static IP addresses which I don't in
fact use are routed by my ISP to my firewall machine. I upgraded that
machine from 2.2.17 to 2.4.16 on Saturday. My firewall is configured
to log packets coming to any of those addresses, and drop them.
Today, I've noticed several messages appearing in my logs similar to:
Dec 24 18:07:31 pinky kernel: host 220.127.116.11/if48 ignores redirects for 18.104.22.168 to 22.214.171.124.
(126.96.36.199 is one of the IP addresses getting routed to me).
I've seen them for all of the addresses routed to me other than my
actual firewall address, and with a variety of sites identified as
ignoring redirects. Some of those sites don't seem to have a reverse
DNS mapping (including the one in the message above); others are
things like 0.so-1-0-0.TL2.LAX9.ALTER.NET.
Anybody know what's happening?
Joseph J. Pfeiffer, Jr., Ph.D. Phone -- (505) 646-1605
Department of Computer Science FAX -- (505) 646-1002
New Mexico State University http://www.cs.nmsu.edu/~pfeiffer
Southwestern NM Regional Science and Engr Fair: http://www.nmsu.edu/~scifair