OVH Community, your new community space.

[Atack port 51413] Port bloqué, mais ensuite?


admin_julie_srv
29/01/2014, 22h02
Ok, je voit, et moi qui a paniqué pour ...rien ... Enfin vaut mieux çà qu'une vrai attaque.

Sinon, peut tu si possible me donné quelque info sur certaine de ces info?
concernant :
Code:
LEN=129 TOS=0x00 PREC=0x00 TTL=117  .... LEN=109
je suppose que c'est "LEN=109" qui ta donné l'info?


La prochaine fois je serais quoi regardé et ainsi évité de m'alarmer pour des petit paquet^^

nowwhat
29/01/2014, 21h08
'Soir.

Regarde l'heure des paquets. Chaque paquet est env. 100 octets.
Soit 2 à 3 paquets par seconde de env. 100 octets, soit 0,3 Kb/sec par seconde. Autrement dit: c'est rien.
On ne peut pas parler de DOS là, mais plutôt le bruit de fond, toujours présent sur Internet.
Pour optimiser ton serveur, évite que 'iptables' log ces genre des tentatives, car c'est ça qui prend plus de temps de traitement que la "destruction" de ces données.

La location d'un parafeu en amont: ce n'est pas une option avec un KS.

Si ces genre des requêtes montera vers des dizaines de Mb/sec, ton serveur explosera donc, car il fabrique avec tes logs de fichier 'log' des Megas par seconde, le VAC d'OVH te protègera (mais son serveur sera KO car disque plein .....).

Donc: ignore ces logs - ne log plus ce genre d'info.

admin_julie_srv
29/01/2014, 20h41
Bonsoir,

éléments puvant déterminé mon serveur:
RBX1 - Rack: 17D04 - Server ID: 45532

Ayant fait récemment une réinstallation, et remit en place aussitôt mon pare-feu, je constate avec stupeur les tentatives bien que bloqués sur le port 51413, dont voici un extrait.

extrait du syslog
Code:
Jan 29 08:21:44 srv2 kernel: [ 9467.883768] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8190 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:44 srv2 kernel: [ 9468.008807] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8191 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:45 srv2 kernel: [ 9468.258461] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8192 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:45 srv2 kernel: [ 9468.543760] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8193 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:45 srv2 kernel: [ 9468.756719] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8194 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:45 srv2 kernel: [ 9468.856454] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8195 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:45 srv2 kernel: [ 9468.900366] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8196 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:45 srv2 kernel: [ 9469.026262] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8197 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:46 srv2 kernel: [ 9469.492707] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8198 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:46 srv2 kernel: [ 9469.794220] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8199 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:46 srv2 kernel: [ 9469.908309] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=112.239.176.206 DST=xxx.xxx.xxx.xxx LEN=126 TOS=0x00 PREC=0x00 TTL=47 ID=4782 PROTO=UDP SPT=26850 DPT=51413 LEN=106 
Jan 29 08:21:46 srv2 kernel: [ 9469.931807] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=112.239.176.206 DST=xxx.xxx.xxx.xxx LEN=126 TOS=0x00 PREC=0x00 TTL=47 ID=4789 PROTO=UDP SPT=26850 DPT=51413 LEN=106 
Jan 29 08:21:46 srv2 kernel: [ 9470.023725] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8200 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:47 srv2 kernel: [ 9470.197690] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8201 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:47 srv2 kernel: [ 9470.267664] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=60.210.57.124 DST=xxx.xxx.xxx.xxx LEN=126 TOS=0x00 PREC=0x00 TTL=49 ID=44687 PROTO=UDP SPT=27593 DPT=51413 LEN=106 
Jan 29 08:21:47 srv2 kernel: [ 9470.286389] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=60.210.57.124 DST=xxx.xxx.xxx.xxx LEN=126 TOS=0x00 PREC=0x00 TTL=49 ID=44694 PROTO=UDP SPT=27593 DPT=51413 LEN=106 
Jan 29 08:21:47 srv2 kernel: [ 9470.367674] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8202 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:47 srv2 kernel: [ 9470.444899] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8203 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:47 srv2 kernel: [ 9470.542299] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=110.51.54.150 DST=xxx.xxx.xxx.xxx LEN=126 TOS=0x00 PREC=0x00 TTL=45 ID=7837 PROTO=UDP SPT=11466 DPT=51413 LEN=106 
Jan 29 08:21:47 srv2 kernel: [ 9470.564385] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=110.51.54.150 DST=xxx.xxx.xxx.xxx LEN=126 TOS=0x00 PREC=0x00 TTL=45 ID=7843 PROTO=UDP SPT=11466 DPT=51413 LEN=106 
Jan 29 08:21:47 srv2 kernel: [ 9470.731199] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8204 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:47 srv2 kernel: [ 9470.888916] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8205 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:47 srv2 kernel: [ 9471.043651] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8206 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:48 srv2 kernel: [ 9471.394433] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8207 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:48 srv2 kernel: [ 9471.648925] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8208 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:48 srv2 kernel: [ 9471.828103] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8209 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:48 srv2 kernel: [ 9471.883430] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8210 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:48 srv2 kernel: [ 9472.096416] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8211 PROTO=UDP SPT=6881 DPT=51413 LEN=109 
Jan 29 08:21:49 srv2 kernel: [ 9472.308405] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=91.79.177.98 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=117 ID=8212 PROTO=UDP SPT=6881 DPT=51413 LEN=109 


......


Jan 29 18:11:17 srv2 kernel: [44840.192085] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=31.34.222.44 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=117 ID=31909 PROTO=UDP SPT=9831 DPT=51413 LEN=70 
Jan 29 18:11:40 srv2 kernel: [44863.168213] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=173.193.120.242 DST=xxx.xxx.xxx.xxx LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=27888 DF PROTO=TCP SPT=43167 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0 
Jan 29 18:11:43 srv2 kernel: [44866.167863] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=173.193.120.242 DST=xxx.xxx.xxx.xxx LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=28229 DF PROTO=TCP SPT=43167 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0 
Jan 29 18:14:00 srv2 kernel: [45003.859784] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=188.47.144.35 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=116 ID=13153 PROTO=UDP SPT=11985 DPT=51413 LEN=70 
Jan 29 18:14:25 srv2 kernel: [45029.005594] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=109.165.80.84 DST=xxx.xxx.xxx.xxx LEN=131 TOS=0x00 PREC=0x00 TTL=55 ID=21631 PROTO=UDP SPT=14143 DPT=51413 LEN=111 
Jan 29 18:14:36 srv2 kernel: [45039.482302] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=202.142.112.194 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=112 ID=17481 PROTO=UDP SPT=53710 DPT=51413 LEN=70 
Jan 29 18:15:00 srv2 kernel: [45063.575730] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=78.156.184.186 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=120 ID=4572 PROTO=UDP SPT=20499 DPT=51413 LEN=70 
Jan 29 18:15:07 srv2 kernel: [45070.662830] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=222.213.168.59 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=52 ID=63857 PROTO=UDP SPT=25797 DPT=51413 LEN=70 
Jan 29 18:16:37 srv2 kernel: [45160.730399] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=27.7.37.86 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=113 ID=26600 PROTO=UDP SPT=0 DPT=51413 LEN=70 
Jan 29 18:17:11 srv2 kernel: [45195.102610] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=86.97.190.54 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=53 ID=614 PROTO=UDP SPT=8521 DPT=51413 LEN=70 
Jan 29 18:17:56 srv2 kernel: [45239.805561] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=60.249.132.34 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=112 ID=24934 PROTO=UDP SPT=23714 DPT=51413 LEN=70 
Jan 29 18:18:28 srv2 kernel: [45272.136255] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=27.192.228.252 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=47 ID=25756 PROTO=UDP SPT=36136 DPT=51413 LEN=70 
Jan 29 18:20:11 srv2 kernel: [45374.416017] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=92.143.154.104 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=53 ID=13025 PROTO=UDP SPT=9433 DPT=51413 LEN=70 
Jan 29 18:20:40 srv2 kernel: [45403.673290] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=90.43.223.68 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=116 ID=28734 PROTO=UDP SPT=9605 DPT=51413 LEN=70 
Jan 29 18:21:02 srv2 kernel: [45425.305061] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=61.70.196.43 DST=xxx.xxx.xxx.xxx LEN=126 TOS=0x00 PREC=0x00 TTL=112 ID=704 PROTO=UDP SPT=7962 DPT=51413 LEN=106 
Jan 29 18:21:22 srv2 kernel: [45445.815570] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=111.199.13.205 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=48 ID=29088 PROTO=UDP SPT=28723 DPT=51413 LEN=70 
Jan 29 18:21:32 srv2 kernel: [45455.339482] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=111.199.13.205 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=48 ID=29502 PROTO=UDP SPT=28723 DPT=51413 LEN=70 
Jan 29 18:23:16 srv2 kernel: [45559.552078] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=87.109.100.67 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=111 ID=11633 PROTO=UDP SPT=1570 DPT=51413 LEN=70 
Jan 29 18:23:43 srv2 kernel: [45586.553475] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=105.226.34.53 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=118 ID=8847 PROTO=UDP SPT=23260 DPT=51413 LEN=70 
Jan 29 18:25:30 srv2 kernel: [45693.796147] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=85.130.17.178 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=119 ID=22272 PROTO=UDP SPT=26004 DPT=51413 LEN=70 
Jan 29 18:26:06 srv2 kernel: [45729.955050] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=221.204.176.76 DST=xxx.xxx.xxx.xxx LEN=130 TOS=0x00 PREC=0x00 TTL=45 ID=0 DF PROTO=UDP SPT=20306 DPT=51413 LEN=110 
Jan 29 18:26:27 srv2 kernel: [45750.866410] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=142.177.17.37 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=117 ID=22796 PROTO=UDP SPT=61536 DPT=51413 LEN=70 
Jan 29 18:26:41 srv2 kernel: [45764.936932] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=221.204.176.76 DST=xxx.xxx.xxx.xxx LEN=130 TOS=0x00 PREC=0x00 TTL=45 ID=0 DF PROTO=UDP SPT=20306 DPT=51413 LEN=110 
Jan 29 18:27:39 srv2 kernel: [45822.445382] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=79.84.234.49 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=120 ID=38788 PROTO=UDP SPT=22678 DPT=51413 LEN=70 
Jan 29 18:28:15 srv2 kernel: [45858.222663] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=223.167.175.24 DST=xxx.xxx.xxx.xxx LEN=129 TOS=0x00 PREC=0x00 TTL=47 ID=29816 DF PROTO=UDP SPT=30997 DPT=51413 LEN=109 
Jan 29 18:30:11 srv2 kernel: [45974.763954] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=98.243.50.208 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=111 ID=29016 PROTO=UDP SPT=10007 DPT=51413 LEN=70 
Jan 29 18:31:20 srv2 kernel: [46043.324200] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=190.219.170.54 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=114 ID=16292 PROTO=UDP SPT=27448 DPT=51413 LEN=70 
Jan 29 18:31:27 srv2 kernel: [46051.063068] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=61.174.51.208 DST=xxx.xxx.xxx.xxx LEN=40 TOS=0x00 PREC=0x00 TTL=102 ID=256 PROTO=TCP SPT=6000 DPT=22 WINDOW=16384 RES=0x00 SYN URGP=0 
Jan 29 18:32:14 srv2 kernel: [46097.869561] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=177.137.12.38 DST=xxx.xxx.xxx.xxx LEN=131 TOS=0x00 PREC=0x00 TTL=115 ID=27402 PROTO=UDP SPT=1759 DPT=51413 LEN=111 
Jan 29 18:34:14 srv2 kernel: [46217.195745] IPTables : Requete entrant reIN=eth0 OUT= MAC=00:1c:c0:49:bc:0b:00:04:c1:96:09:01:08:00 SRC=41.36.164.57 DST=xxx.xxx.xxx.xxx LEN=90 TOS=0x00 PREC=0x00 TTL=115 ID=26683 PROTO=UDP SPT=24937 DPT=51413 LEN=70
et pourtant je n'est pas transmission d'installer (certe, je l'avais il y a quelque temps.).

Ma question ce pose sur l'évolution de cette situation, car je suppose que de bloquer une ip demande des ressource surtout si elle sont nombreuse.

Y'a pas t'il un moyen de bloquer le port en amont ou autres??
Et aussi n'est ce pas une forme d'attaque DDOS? Bbien que je pense qu'il n'y a pas assez de requete pour planter mon serveur.

Merci d'avance.

Cordialement,