>> I am experiencing a plethora of no rule drops from port 1975
>> - because of course there is no rule to permit that traffic
I found an old post @
http://msgs.securepoint.com/cgi-bin/get/fw9906/548/1.html
<excerpt from the above URL:>
>Forum: RE: Port 1975
>Date: 1999, Jun 24
>From: Bill Fox <[EMAIL PROTECTED]>
>
>Our site had begun getting these port 1975 jewels several months back.
When
>I tracked it down to the originating IPs (several workstations had it..), I
>found that the users had downloaded and installed the GoZilla! app. We're
>fortunate here in that we have the latitude to deny usage of 'non-approved'
>software within our WAN, so the short-term fix was simply to block the port
>at the firewall system's inner router (keeps it out of your firewall's
>logs), and to notify the users of their 'dead' app. Don't know of other
>programs that may use the port, but DO know that it's usage isn't currently
>validated at this location. Makes life a *bit* simpler for sysadmins when
>the organization is willing to stand behind a documented security policy,
>too <smile>.
>
>--Bill
Jeff
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
