iptables and raw connection to port 255
Brad Chapman
kakadu@earthlink.net
Wed, 11 Jul 2001 18:32:16 -0400
Mr. Eric,
What netstat command did you run to get this? I can figure out the first,
fourth, fifth, and seventh columns, but what do the rest mean?
Brad
ewheeler@kaico.com wrote:
> I've got some security scripting that primarily uses netstat.
>
> Does anyone know why it showed me this?
> raw 0 0 0.0.0.0:255 0.0.0.0:* 7 15301/iptables
>
>
> I'm sure there's a legitimate reason for iptables talking on port 255 but
> I can't think why.
>
> Does it need to talk to the kernel on some raw 255 port? Anyone else have
> any ideas/concerns? If iptables talks to the kernel on port 255 via some
> raw protocol could that be exploited?
>
> --Eric