Outbound firewall ports
by PsychoHermit from LinuxQuestions.org on (#5QVSB)
Hi Folks,
I'm seeing blocked outbound traffic on my firewall and am wondering what ports I should have open on my firewall. And should I be concerned about any of this?
I have 53,67,68,123,5353/udp and 53,80,443/tcp open. I use gmail so I don't need the mail ports open.
Thanks for looking,
--glenn
Code:Oct 17 00:21:05 PsychoBox kernel: [ 210.153820] [UFW BLOCK] IN= OUT=wlo1 SRC=192.168.1.111 DST=192.168.1.255 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=42985 DF PROTO=UDP SPT=60132 DPT=137 LEN=58
Oct 17 00:21:17 PsychoBox kernel: [ 221.761772] [UFW BLOCK] IN= OUT=wlo1 SRC=2600:6c4e:2e7f:f1e0:1023:6f5e:4516:17cb DST=2607:f8b0:4007:0817:0000:0000:0000:2003 LEN=1385 TC=0 HOPLIMIT=64 FLOWLBL=597713 PROTO=UDP SPT=35923 DPT=443 LEN=1345
Oct 17 00:21:37 PsychoBox kernel: [ 242.295433] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=42234 PROTO=2
Oct 17 00:21:37 PsychoBox kernel: [ 242.296276] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=42234 PROTO=2
Oct 17 00:21:37 PsychoBox kernel: [ 242.297209] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=42234 PROTO=2
Oct 17 00:22:37 PsychoBox kernel: [ 302.307711] [UFW BLOCK] IN= OUT=wlo1 SRC=2600:6c4e:2e7f:f1e0:1023:6f5e:4516:17cb DST=2607:f8b0:4007:0817:0000:0000:0000:2004 LEN=1385 TC=0 HOPLIMIT=64 FLOWLBL=159843 PROTO=UDP SPT=51138 DPT=443 LEN=1345
Oct 17 00:23:00 PsychoBox kernel: [ 324.574169] [UFW BLOCK] IN= OUT=wlo1 SRC=2600:6c4e:2e7f:f1e0:1023:6f5e:4516:17cb DST=2607:f8b0:4023:0c0d:0000:0000:0000:005f LEN=1385 TC=0 HOPLIMIT=64 FLOWLBL=699970 PROTO=UDP SPT=37013 DPT=443 LEN=1345
Oct 17 00:23:43 PsychoBox kernel: [ 367.663402] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=4192 PROTO=2
Oct 17 00:23:43 PsychoBox kernel: [ 367.664201] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=4192 PROTO=2
Oct 17 00:23:43 PsychoBox kernel: [ 367.665664] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=4192 PROTO=2
I'm seeing blocked outbound traffic on my firewall and am wondering what ports I should have open on my firewall. And should I be concerned about any of this?
I have 53,67,68,123,5353/udp and 53,80,443/tcp open. I use gmail so I don't need the mail ports open.
Thanks for looking,
--glenn
Code:Oct 17 00:21:05 PsychoBox kernel: [ 210.153820] [UFW BLOCK] IN= OUT=wlo1 SRC=192.168.1.111 DST=192.168.1.255 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=42985 DF PROTO=UDP SPT=60132 DPT=137 LEN=58
Oct 17 00:21:17 PsychoBox kernel: [ 221.761772] [UFW BLOCK] IN= OUT=wlo1 SRC=2600:6c4e:2e7f:f1e0:1023:6f5e:4516:17cb DST=2607:f8b0:4007:0817:0000:0000:0000:2003 LEN=1385 TC=0 HOPLIMIT=64 FLOWLBL=597713 PROTO=UDP SPT=35923 DPT=443 LEN=1345
Oct 17 00:21:37 PsychoBox kernel: [ 242.295433] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=42234 PROTO=2
Oct 17 00:21:37 PsychoBox kernel: [ 242.296276] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=42234 PROTO=2
Oct 17 00:21:37 PsychoBox kernel: [ 242.297209] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=42234 PROTO=2
Oct 17 00:22:37 PsychoBox kernel: [ 302.307711] [UFW BLOCK] IN= OUT=wlo1 SRC=2600:6c4e:2e7f:f1e0:1023:6f5e:4516:17cb DST=2607:f8b0:4007:0817:0000:0000:0000:2004 LEN=1385 TC=0 HOPLIMIT=64 FLOWLBL=159843 PROTO=UDP SPT=51138 DPT=443 LEN=1345
Oct 17 00:23:00 PsychoBox kernel: [ 324.574169] [UFW BLOCK] IN= OUT=wlo1 SRC=2600:6c4e:2e7f:f1e0:1023:6f5e:4516:17cb DST=2607:f8b0:4023:0c0d:0000:0000:0000:005f LEN=1385 TC=0 HOPLIMIT=64 FLOWLBL=699970 PROTO=UDP SPT=37013 DPT=443 LEN=1345
Oct 17 00:23:43 PsychoBox kernel: [ 367.663402] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=4192 PROTO=2
Oct 17 00:23:43 PsychoBox kernel: [ 367.664201] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=4192 PROTO=2
Oct 17 00:23:43 PsychoBox kernel: [ 367.665664] [UFW BLOCK] IN=wlo1 OUT= MAC=01:00:5e:00:00:01:c4:41:1e:6c:4a:c8:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=4192 PROTO=2