> realistically their machine is 32 bit win and they have that protocol
> active on their dialup interface. more often then not it is harmless
> happening yet it depends on your site policy of course as to wether it is
> a red flag or not eh?
>
> On Sat, 19 Oct 1996, Dan Graupman wrote:
>
> > On Sat, 19 Oct 1996, Robert Hanson wrote:
> >
> > > i believe the "3" is the statement number in the filter that is logging to
> > > your machine.
> > >
> > > On Sat, 19 Oct 1996, Dan Graupman wrote:
> > >
> > > >
> > > > My logs are filling up with these messages. It appears that someone
> > > > is attempting to send NetBios name service requests through my network?
> > > >
> > > > Oct 19 08:19:49 gate1.elnet.com 3 deny: UDP from 168.87.6.235.137 to 130.252.100.69.137
> > > > Oct 19 08:20:04 gate1.elnet.com last message repeated 10 times
> > > >
> > > > Can someone tell me what the "3" before the "deny" means?
> > > >
> > > > Is there anyway to tell which filter or port these messages are coming from?
> > > >
> > > > Thanks for any help.
It turns out that a user was using his notebook from work to connect up,
and had not set up his dialup networking correctly.
I had originally thought that this was coming in over the "W1". It would
be nice if there were a way to see which port/filter the messages were
being sent from.
Dan Graupman
Electro Link Network, Inc. graupman@elnet.com
P.O. Box 711, 109B E. North St., Phone: 1-630-365-0807
Elburn, IL 60119-0711 http://www.elnet.com