Hey guys. New to the forum, but wanted to see if anyone could work out what this is all about... twice now since switching to F9 my IPCop 1.3 has crashed overnight... its not getting hot, as far as I know the hardware is all good... and in the logs I got this earlier this morning when it happened again...
"dennyland" is the username of the PlusNet user whose public IP address is 22.214.171.124. (Just as "hcswales" is the username of the Force9 user whose public IP address is 126.96.36.199 -> hcswales.force9.co.uk.)
I notice the destination port ("DPT") is the notorious 445, which I thought Force9/PlusNet was requiring users to block? I believe you're therefore entitled to report this to PlusNet as an example of abuse.
Is that 188.8.131.52 the real address that was shown, or is it one you've made up for the sake of posting here?
The "OUT=" is interesting as it may suggest IPCop didn't know what to do with the packet, or, perhaps, it's IPCop's way of indicating it's going to drop the packet?
Can't say I understand the 14-octet MAC address, either -- is that two MAC addresses combined in some way? Perhaps someone else will explain that!