>
> I have a cisco 4700 and several pm3's running 3.7.2 ComOS. In the error
> log for the access lists, several of these errors showed up:
>
> Jan 23 16:30:36 frii-gw-e0 672262: %SEC-6-IPACCESSLOGP: list 103 denied
> tcp 208.146.240.204(1011) -> 208.146.240.3(0), 254 packets
>
>
> 208.146.240.3 is our default host and 208.146.240.204 is the portmaster.
> 1011 is the port on the pormaster and 0 is the port on the default host.
> When I log into the portmaster and type a 'sh netc' I have several of
> these entries:
>
> 119 0 0 pm-ftc-04.frii..1011 io.frii.com.0 CONNECTING
> 118 0 0 pm-ftc-04.frii..1011 io.frii.com.0 CONNECTING
> 117 0 0 pm-ftc-04.frii..1011 io.frii.com.0 CONNECTING
> 115 0 0 pm-ftc-04.frii..1011 io.frii.com.0 CONNECTING
> 114 0 0 pm-ftc-04.frii..1011 io.frii.com.0 CONNECTING
> 113 0 0 pm-ftc-04.frii..1011 io.frii.com.0 CONNECTING
>
> My question is why is 2 of my pormasters (out of 4) tyring to connect from
> port 1011 to port 0 on the default host several times and failing? What
> is port 0?
Nothing.. ;) Zero is not a valid port in IP. Were there any users trying
to login (and therefore connecting to the default host) when this
was going on? Were they successful?
Try a "reset n#" where '#' is the number on the very far left. Does the
connection disappear or does it persist?
Do a "netstat -an" ON your default host, are there any corresponding
sockets open? If so, what state are they in?
>
> Any help would be greatly appreciated. Thank You
>
> Chris Bissell
Josh Richards - <jrichard@livingston.com>
Beta Engineer
Lucent Technologies (Remote Access Business Unit)
(previously Livingston Enterprises, Inc.)
-
To unsubscribe, email 'majordomo@livingston.com' with
'unsubscribe portmaster-users' in the body of the message.