Temat: OpenWrt wysyła pakiety
Witam,
Mój WR1043ND z Backfire 10.03 wysyła pakiety icmp. Przez przypadek podczas nauki tcpdumpa dostałem takie wyniki:
08:50:47.131216 IP 10.5.50.212 > 115.147.202.20: ICMP 10.5.50.212 udp port 51413 unreachable, length 139
08:50:57.668432 IP 10.5.50.212 > dsl-189-146-174-98-dyn.prod-infinitum.com.mx: ICMP 10.5.50.212 udp port 51413 unreachable, length 139
08:51:00.464754 IP 10.5.50.212 > nj-67-237-6-177.dhcp.embarqhsd.net: ICMP 10.5.50.212 udp port 51413 unreachable, length 139
08:51:01.507689 IP 10.5.50.212 > 117.241.184.231: ICMP 10.5.50.212 udp port 51413 unreachable, length 139
08:51:02.019191 IP 10.5.50.212 > h79-138-43-252.dynamic.se.alltele.net: ICMP 10.5.50.212 udp port 51413 unreachable, length 139
08:51:05.362632 IP 10.5.50.212 > 22.045.dsl.pth.iprimus.net.au: ICMP 10.5.50.212 udp port 51413 unreachable, length 139
08:51:05.664466 IP 10.5.50.212 > nor75-15-81-57-221-79.fbx.proxad.net: ICMP 10.5.50.212 udp port 51413 unreachable, length 139
08:51:08.762289 IP 10.5.50.212 > 59.165.66.70.static-delhi.vsnl.net.in: ICMP 10.5.50.212 udp port 51413 unreachable, length 139
jest tego sporo, co kilka sekund. Jak znaleźć źródło? Na szczęście porty pozamykane, ale ...
na eth0.1 cisza, wlan0 też, tylko eth0.2 (wan) szumi,
root@OpenWrt:~# ps -A
PID USER VSZ STAT COMMAND
1 root 1364 S init
2 root 0 SW [kthreadd]
3 root 0 SW [ksoftirqd/0]
4 root 0 SW [events/0]
5 root 0 SW [khelper]
8 root 0 SW [async/mgr]
41 root 0 SW [sync_supers]
43 root 0 SW [bdi-default]
45 root 0 SW [kblockd/0]
70 root 0 SW [kswapd0]
71 root 0 SW [aio/0]
72 root 0 SW [crypto/0]
84 root 0 SW [mtdblockd]
90 root 0 SW [ar71xx-spi]
225 root 0 SW [ipolldevd]
279 root 0 SWN [jffs2_gcd_mtd3]
295 root 1364 S init
314 root 1368 S syslogd -C16
316 root 1352 S klogd
330 root 780 S /sbin/hotplug2 --override --persistent --set-worker /
493 root 0 SW [cfg80211]
623 root 0 SW [khubd]
681 root 0 SW [phy0]
794 root 0 SW [scsi_eh_0]
795 root 0 SW [usb-storage]
1018 root 824 S /usr/sbin/ntpclient -i 600 -s -l -D -p 123 -h 0.openw
1157 root 1420 S hostapd -P /var/run/wifi-phy0.pid -B /var/run/hostapd
1376 root 0 SW [kjournald]
1494 root 1136 S /usr/sbin/dropbear -p 22 -P /var/run/dropbear.1.pid
1503 root 2104 S /usr/sbin/uhttpd -f -h /www -r OpenWrt -x /cgi-bin -t
1521 root 1192 S /usr/sbin/dropbear -p 22 -P /var/run/dropbear.1.pid
1531 nobody 908 S /usr/sbin/dnsmasq -K -D -y -Z -b -E -s lan -S /lan/ -
1540 root 2620 S N smbd -D
1542 root 1368 S -ash
1547 root 2124 S nmbd -D
1578 root 2944 S /usr/sbin/openvpn --syslog openvpn(myvpn) --writepid
1583 root 1360 S watchdog -t 5 /dev/watchdog
1607 root 3888 S /usr/bin/transmission-daemon -g /tmp/transmission
1608 root 3888 S /usr/bin/transmission-daemon -g /tmp/transmission
1609 root 3888 S /usr/bin/transmission-daemon -g /tmp/transmission
1610 root 3888 S /usr/bin/transmission-daemon -g /tmp/transmission
1624 root 1212 S /usr/sbin/dropbear -p 22 -P /var/run/dropbear.1.pid
1625 root 1372 S -ash
1655 root 1044 S vsftpd
1699 root 1356 R ps -A
Człowiek uczy się całe życie...