The following entry is popping up every couple of seconds in my logs...
May 14 10:17:45 voyager kernel: gShield (default drop) IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:00:90:96:12:19:60:08:00 SRC=0.0.0.0 DST=255.255.255.255 LEN=576 TOS=0x00 PREC=0x00 TTL=255 ID=16963 PROTO=UDP SPT=68 DPT=67 LEN=556
It is the same MAC address every time. Same ports too. The only thing thats changes frequently is the LEN value.
I use cable internet so my first guess would be that this is coming from the DHCP server (from the src 0.0.0.0 and the dst 255.255.255.255), but I don't think it's trying to renew my lease every couple of seconds...
I am running RH 7.2 and using Adelphia as my cable provider. I'm using gShield to configure an IPTables firewall. Running Kernel 2.4.9-31 (I think... It's a 2.4.* kernel though...).
Any idea what those messages mean (besides that my computer is blocking their access) and how I can get my logs to stop filling up with them?