Hello, im pretty sure someone is dossing my VPS or a website on it.
the netstat sfows ffff port connections, but no IP behind it, it tried to disable ipv6 networking, but it still affect server?
Quote:
netstat -ntu | awk '{print $5}' | cut -d: -f1 | sort | uniq -c | sort -n
netstat -tuna | awk -F':+| +' 'NR>2{print $5}' | cut -d: -f1 | sort | uniq -c | sort -n
127
127 ffff
|
i trimmed output to show only ffff result..
in /etc/sysconfig/network
is:
Quote:
NETWORKING_IPV6="yes"
IPV6_DEFAULTDEV="venet0"
|
so i add to no, and restarted network service, change was preserver, then after reboot of VPS, it was ipv6 again. its openvz centos 5 vps.
// update, that networking probably wont work to be stopped i commented out ::1 line from /etc/hosts, but ffff connections still there