Firewalld Statemessage "STATE_INVALID_DROP"

Support for security such as Firewalls and securing linux
Post Reply
kojikoji
Posts: 1
Joined: 2018/10/09 01:28:36

Firewalld Statemessage "STATE_INVALID_DROP"

Post by kojikoji » 2018/10/09 01:50:38

Hi.
Please tell me.

I set DROP to a specific IP address using Firewalld.

A message was output to /var/log/messages.
------
Oct 9 10:02:43 HOSTNAME kernel: STATE_INVALID_DROP: IN=eth0 OUT= MAC=??:??:??:??:??:??:??:??:??:??:??:??:??:?? SRC=192.168.0.1 DST=172.16.0.1 LEN=52 TOS=0x00 PREC=0x00 TTL=47 ID=28961 DF PROTO=TCP SPT=45592 DPT=443 WINDOW=770 RES=0x00 ACK URGP=0
------
It is not an IP address(192.168.0.1) of DROP target, but what is the meaning of this message?

Post Reply

Return to “CentOS 7 - Security Support”