[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Unknown IP in my syslog

From: David Powers <wizlord freewwweb com>
To: redhat-list redhat com
Subject: Re: Unknown IP in my syslog
Date: Sun, 31 Oct 1999 14:26:13 -0600

> I can't find neither 10.10.12.230, 10.10.12.231 nor 208.178.165.230 with
> nslookup. (Though I can lookup and reverse lookup 'any' other address.)

10.10.12.230 and .231 are reserved enterprise IP address and
208.178.165.230 is a part of RedHat's IP block.  Whenever a lookup on an
address fails you can do this

whois ipaddress whois arin net

Try it and you will see what it does.  I use this as a method of
tracking down who to report spam to.  As you can see if you do this with
the RedHat IP you can note that this gives you information regarding
their upstream provider.  Well I've gone off topic, and am not the
framiliar with what looks to be firewall logs you have there.  But I
hope that I have helped you to understand a way that you can gain
information in an event that you need to report network abuse.

References:
- Unknown IP in my syslog
  - From: Gustav Schaffter

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]