Port / NetBIOS

Remco Barendse mailscanner at BARENDSE.TO
Wed Feb 11 19:41:48 GMT 2004


Why don't you just drop the packets unlogged instead of logging such
packets? That will keep your firewall logs clean

>
> >-----Original Message-----
> >From: Steve Douglas [mailto:steve.douglas at SBIINCORPORATED.COM]
> >Sent: Wednesday, February 11, 2004 10:01 AM
> >To: MAILSCANNER at JISCMAIL.AC.UK
> >Subject: Port / NetBIOS
> >
> >
> >I am set up with RH9, SA 2.61, MS December release, 1.5 GB of
> >RAM, 80 GB
> >duplexed drives.  The MS system is forwards from the DMZ through the
> >firewall to my internal Exchange 5.5 file server.
> >
> >My firewall logs are filled by the megatons with errors
> >showing the Exchange
> >email server attempting to send NetBios calls (port 137) to the DMZ MS
> >gateway.  I guess this is normal considering the exchange
> >system is trying
> >to do its job (as far as Microsoft is concerned) in
> >identifying the system
> >that is passing it all this email.
> >
> >My firewall has this port blocked for obvious reasons.  Is
> >this normal and
> >is there anything that I should do further to shut the
> >exchange server up or
> >just live with it?
> >
> >Thanks.
> >
> >SD :-)
> >
>



More information about the MailScanner mailing list