Damn, son; you boys have a fight? ;-) Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://www.microsoft.com/isaserver http://isaserver.org/Jim_Harrison http://isatools.org Read the help, books and articles! ----- Original Message ----- From: "Steve Moffat" <steve@xxxxxxxxxxxxxxxxxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Friday, July 04, 2003 09:27 Subject: [isalist] Re: July 4th packet filter log http://www.ISAserver.org Greg ain't got the brains for that.....LOL -----Original Message----- From: Jim Harrison [mailto:jim@xxxxxxxxxxxx] Sent: Friday, July 04, 2003 12:01 PM To: [ISAserver.org Discussion List] http://www.ISAserver.org It's probably Greg or Steve... ;-) OrgName: Telstra OrgID: TELSTR Address: 9th Floor, 219 Elizabeth Street Address: Melbourne Victoria, 3000 City: StateProv: PostalCode: Country: AU NetRange: 144.132.0.0 - 144.132.255.255 CIDR: 144.132.0.0/16 NetName: TELECOMAU2 NetHandle: NET-144-132-0-0-1 Parent: NET-144-0-0-0-0 NetType: Direct Assignment NameServer: NS4.BIGPOND.NET.AU NameServer: NS1.BIGPOND.NET.AU NameServer: NS2.BIGPOND.NET.AU NameServer: NS3.BIGPOND.NET.AU Comment: RegDate: 1990-12-10 Updated: 2001-08-28 TechHandle: HM100-ORG-ARIN TechName: TELSTRA CORPORATION TechPhone: +61 29242 1238 TechEmail: hostmaster@xxxxxxxxxxxxxxxxxxxx # ARIN WHOIS database, last updated 2003-07-03 21:05 # Enter ? for additional hints on searching ARIN's WHOIS database. Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://www.microsoft.com/isaserver http://isaserver.org/Jim_Harrison http://isatools.org Read the help, books and articles! ----- Original Message ----- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Friday, July 04, 2003 06:32 Subject: [isalist] July 4th packet filter log http://www.ISAserver.org Hey guys, Looks like this troll is spending Independance Day in fine fashion: 7/4/2003, 7:58:06, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11177, 7, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:06, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11178, 11, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:07, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11179, 19, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:07, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11181, 22, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:07, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11182, 23, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:08, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11184, 42, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:08, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11185, 43, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:08, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11187, 66, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:08, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11188, 79, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:09, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11190, 81, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:09, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11191, 88, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:09, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11192, 109, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:10, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11194, 111, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:10, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11195, 118, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:10, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11196, 119, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:11, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11198, 143, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:11, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11199, 179, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:11, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11200, 256, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:11, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11201, 389, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:11, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11202, 396, SYN , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:41, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11177, 7, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:41, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11178, 11, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:41, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11179, 19, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:41, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11181, 22, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:41, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11182, 23, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:41, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11184, 42, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:41, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11185, 43, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:41, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11187, 66, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:41, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11188, 79, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:41, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11190, 81, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:41, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11191, 88, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:45, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11192, 109, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:45, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11194, 111, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:45, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11195, 118, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:45, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11196, 119, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:45, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11198, 143, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:45, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11199, 179, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:45, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11200, 256, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:45, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11201, 389, RST , BLOCKED, xxx.xxx.xxx.111, -, - 7/4/2003, 7:58:45, 144.132.42.235, xxx.xxx.xxx.111, Tcp, 11202, 396, RST , BLOCKED, xxx.xxx.xxx.111, -, - :-) Tom Thomas W Shinder www.isaserver.org/shinder <http://www.isaserver.org/shinder> ISA Server and Beyond: http://tinyurl.com/1jq1 Configuring ISA Server: http://tinyurl.com/1llp <http://tinyurl.com/1llp> ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: steve@xxxxxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') This E-Mail is confidential. It is not intended to be read, copied, disclosed or used by any person other than the recipient named above. Unauthorised use, disclosure, or copying is strictly prohibited and may be unlawful. Optimum IT Solutions disclaims any liability for any action taken in connection of this E-Mail. The comments or statements expressed in this E-Mail are not necessarily those of Optimum IT Solutions or its subsidiaries or affiliates. administrator@xxxxxxxxxxxxxxxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')