Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    239.255.255.250:1900 UDP all over the firewall log.

    Scheduled Pinned Locked Moved Firewalling
    2 Posts 2 Posters 1.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ressurexR
      ressurex
      last edited by

      Newbie here..

      from 2 IPs in my LAN my firewall log only has alot of alerts only from these two IPs.

      192.168.10.1:1901 239.255.255.250:1900 UDP
      192.168.10.12:56839 239.255.255.250:1900 UDP
      192.168.10.12:38184 239.255.255.250:1900 UDP

      192.168.10.1 = Cisco EPC3940AD EuroDocsis 3.0 2-PORT Voice Gateway ( ISP )
      192.168.10.12 = PFsense.

      How can I disable this alert in my logs ?

      1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator
        last edited by johnpoz

        turn off default deny log, setup your own logging of what you want.. say syn only.. Or setup a rule in your ruleset to block/allow but do not log it. 239.255.x.x is multicast address.

        Are you blocking bogon on your lan interface? that range is include in the bogon 224.0.0.0/4 so if you are blocking bogon those would be blocked.. I can not for the life of me think of a valid scenario where you would want/need to block bogon on a local interface.

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.