×
We are experiencing an outage of our ReadyCloud service and are working to resolve the issue..
×
A causa della situazione attuale con il Coronavirus COVID-19 stiamo riscontrando un volume di chiamate insolitamente elevato e di conseguenza un aumento dei tempi di attesa e dei tempi di risposta. Apprezziamo la vostra pazienza mentre analizziamo questo processo.
×
Manutenzione Community programmata per il 29 agosto - Messaggi / risposte disabilitati. Per saperne di più.
×
Nighthawk Pro Gaming is Streaming Live on Twitch! Live Q&A with the NPG Team and our Sponsors! (watch now…)
Questo topic è stato chiuso per inattività. Speriamo tu voglia prendere parte alla discussione pubblicando un post in un topic aperto o iniziandone uno nuovo.
Problema strano log e continue disconnessioni da internet
Buongiorno, ho avuto varie disconnessioni della rete ieri, disconnessioni che non erano dovute alla connettività esterna del fornitore di servizi internet (ho 4 linee di gestori diverse collegati sulla wan).
Visto che negli ultimi 4 anni non è mai capitata una cosa simile, ho verificato nel log e, putroppo, non ho trovato nulla se non queste attività del kernel.
In ufficio, per via delle festività, non c'era nessuno collegato alla rete, se non alcuni server.
Qualcuno può dirmi se è normale o se devo supporre un attacco esterno?
In particolar modo, cosa significano le righe (ne metto solo alcune, ma in realtà ci sarebbero 10 pagine di righe simili generate tutte nello stesso intervallo di tempo):
Tue Jan 1 23:14:05 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] tcindex_get(tp a80000041e535980,handle 0x00000000)
Wed Jan 2 01:52:51 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] HTB: quantum of class 10001 is big. Consider r2q change.
Wed Jan 2 01:52:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] HTB: quantum of class 10001 is big. Consider r2q change.
Wed Jan 2 01:52:16 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: no IPv6 routers present
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 33:33:ff:28:cc:56 mcast address to master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 01:00:5e:00:00:01 mcast address to master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 33:33:00:00:00:01 mcast address to master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: Setting MAC address to e4 f4 c6 28 cc 56.
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] IPsec: device unregistering: eth0.3
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] IPsec: device down: eth0.3
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:00:00:00:01 mcast address from master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:00:00:00:01 mcast address from vlan interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 01:00:5e:00:00:01 mcast address from master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 01:00:5e:00:00:01 mcast address from vlan interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:ff:28:cc:56 mcast address from master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:ff:28:cc:56 mcast address from vlan interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 33:33:ff:28:cc:56 mcast address to master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 01:00:5e:00:00:01 mcast address to master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 33:33:00:00:00:01 mcast address to master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: Setting MAC address to e4 f4 c6 28 cc 56.
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] IPsec: device unregistering: eth0.3
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] IPsec: device down: eth0.3
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:00:00:00:01 mcast address from master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:00:00:00:01 mcast address from vlan interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 01:00:5e:00:00:01 mcast address from master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 01:00:5e:00:00:01 mcast address from vlan interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:ff:28:cc:56 mcast address from master interface
Wed Jan 2 01:52:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:ff:28:cc:56 mcast address from vlan interface
Wed Jan 2 01:51:56 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: no IPv6 routers present
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 33:33:ff:28:cc:56 mcast address to master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 01:00:5e:00:00:01 mcast address to master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 33:33:00:00:00:01 mcast address to master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: Setting MAC address to e4 f4 c6 28 cc 56.
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] IPsec: device unregistering: eth0.3
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] IPsec: device down: eth0.3
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:00:00:00:01 mcast address from master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:00:00:00:01 mcast address from vlan interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 01:00:5e:00:00:01 mcast address from master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 01:00:5e:00:00:01 mcast address from vlan interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:ff:28:cc:56 mcast address from master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:ff:28:cc:56 mcast address from vlan interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 33:33:ff:28:cc:56 mcast address to master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 01:00:5e:00:00:01 mcast address to master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: add 33:33:00:00:00:01 mcast address to master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: Setting MAC address to e4 f4 c6 28 cc 56.
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] IPsec: device unregistering: eth0.3
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] IPsec: device down: eth0.3
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:00:00:00:01 mcast address from master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:00:00:00:01 mcast address from vlan interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 01:00:5e:00:00:01 mcast address from master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 01:00:5e:00:00:01 mcast address from vlan interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:ff:28:cc:56 mcast address from master interface
Wed Jan 2 01:51:46 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] eth0.3: del 33:33:ff:28:cc:56 mcast address from vlan interface
Wed Jan 2 01:51:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] HTB: quantum of class 11024 is big. Consider r2q change.
Wed Jan 2 01:51:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] HTB: quantum of class 10001 is big. Consider r2q change.
Wed Jan 2 01:51:06 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] p->perfect 0000000000000000 p->h a80000041884fc00
Wed Jan 2 01:45:36 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] tcindex_walk(tp a800000416ee3880,walker a800000417283900),p a80000041e4f1e80
Wed Jan 2 01:45:36 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] tcindex_destroy(tp a800000416ee3880),p a80000041e4f1e80
Wed Jan 2 01:44:56 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] HTB: quantum of class 11024 is big. Consider r2q change.
Wed Jan 2 01:44:56 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] HTB: quantum of class 10001 is big. Consider r2q change.
Wed Jan 2 01:44:56 2019((GMT+0100)) [SRX5308][Kernel][KERNEL] p->perfect 0000000000000000 p->h a800000417da3400
Fatemi sapere per favore se il router è stato compromesso, oppure se posso stare tranquillo. Se questo modello a vostro avviso è da sostituire con qualcosa di più nuovo e sicuro, ditemelo perchè la sicurezza per me è fondamentale.
Grazie,
Alessio.
Model: SRX5308|PROSAFE Gigabit Quad WAN SSL & IPSEC VPN Firewall
Re: Problema strano log e continue disconnessioni da internet
Grazie, però mi chiede il numero di serie e sono fuori sede in ferie questi giorni. Secondo te riesco a contattare l'assistenza anche senza seriale? Per come hai potuto visionare il log, mi consigli di intervenire tempestivamente o posso stare tranquillo fino all'8 gennaio?
