first cut at IP protocol scan detection (nmap -sO)

diff --git a/ChangeLog b/ChangeLog
index 3b94744..8b357eb 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,4 +1,8 @@
-psad-2.2.1 (11/24/2012):
+psad-2.2.1 (12//2012):
+    - Added IP protocol scan detection (nmap -sO).  A new psad.conf variable
+      PROTOCOL_SCAN_THRESHOLD defines the minimum number of different IP
+      protocols (default = 5) that must be scanned before an alert is
+      triggered.
     - Bug fix in --Analyze mode when IP fields are to be searched with the
       --analysis-fields argument (such as --analysis-fields "SRC:1.2.3.4").
       The bug was reported by Gregorio Narvaez, and looked like this:
@@ -14,7 +18,10 @@ psad-2.2.1 (11/24/2012):
       ../../blib/lib/auto/NetAddr/IP/UtilPP/_deadlen.al) line 122.
 
     - Added --stdin argument to allow psad to collect iptables log data from
-      STDIN in --Analyze mode.
+      STDIN in --Analyze mode.  This makes it easier to run an iptables logs
+      through psad from arbitrary files like so:
+
+      # grep "IN=.*OUT=" /var/log/kern.log | psad -A --stdin
 
 psad-2.2 (02/20/2012):
     - Added support for detection of malicious traffic that is delivered via

diff --git a/VERSION b/VERSION
index bceaf6a..5ee78ac 100644 (file)
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-psad-2.3-pre1
+2.3-pre1

diff --git a/nf2csv b/nf2csv
index 8681c6f..d615322 100755 (executable)
--- a/nf2csv
+++ b/nf2csv
@@ -36,7 +36,7 @@
 use Getopt::Long 'GetOptions';
 use strict;
 
-my $version = 'psad-2.3-pre1';
+my $version = '2.3-pre1';
 
 ### regex to match an ip address
 my $ip_re = qr|(?:[0-2]?\d{1,2}\.){3}[0-2]?\d{1,2}|;

diff --git a/psad b/psad
index 0afb0e0..63e8d16 100755 (executable)
--- a/psad
+++ b/psad
@@ -20,7 +20,7 @@
 #
 # Credits: (see the CREDITS file bundled with the psad sources.)
 #
-# Version: psad-2.3-pre1
+# Version: 2.3-pre1
 #
 # Copyright (C) 1999-2012 Michael Rash (mbr@cipherdyne.org)
 #
@@ -61,19 +61,20 @@
 #   reading.
 #
 # Scan hash key explanation:
-#   absnum    - Total number of packets from $src to $dst
-#   chain     - iptables chain under which the scan packets appear in the
-#               logs.
-#   s_time    - Start time for the first packet seen from src to dst.
-#   alerted   - An alert has been sent.
-#   pkts      - Number of packets (used for signatures and a packet counter
-#               for the current interval.
-#   flags     - Keeps track of tcp flags.
-#   sid       - Signature tracking
-#   abs_sp    - Absolute starting port.
-#   abs_ep    - Absolute ending port.
-#   strtp     - Starting port.
-#   endp      - Ending port.
+#   absnum        - Total number of packets from $src to $dst
+#   tot_protocols - Total number of IP protocols scanned by $src against $dst
+#   chain         - iptables chain under which the scan packets appear in the
+#                   logs.
+#   s_time        - Start time for the first packet seen from src to dst.
+#   alerted       - An alert has been sent.
+#   pkts          - Number of packets (used for signatures and a packet counter
+#                   for the current interval.
+#   flags         - Keeps track of tcp flags.
+#   sid           - Signature tracking
+#   abs_sp        - Absolute starting port.
+#   abs_ep        - Absolute ending port.
+#   strtp         - Starting port.
+#   endp          - Ending port.
 #
 # Sample iptables log messages:
 #
@@ -144,7 +145,7 @@ use strict;
 ### ========================== main =================================
 
 ### set the current version
-my $version = 'psad-2.3-pre1';
+my $version = '2.3-pre1';
 
 ### default config file for psad (can be changed with
 ### --config switch)
@@ -321,9 +322,17 @@ my $ipv6_re = qr|(?:[a-f0-9]{4}:){7}(?:[a-f0-9]{4})|i;
 ### average.
 my $max_hops = 20;
 
-### per protocol packet counters
-my @protocols = qw/tcp udp udplite icmp icmp6/;
+### initial set of protocol packet counters (may get expanded through
+### things like protocol scan detection)
+my %protocols = (
+    'tcp'     => '',
+    'udp'     => '',
+    'udplite' => '',
+    'icmp'    => '',
+    'icmp6'   => ''
+);
 my %proto_ctrs = ();
+my %protocol_strings = ();
 
 ### pid file hash
 my %pidfiles = ();
@@ -635,7 +644,7 @@ my @args_cp = @ARGV;
 &get_local_ips();
 
 ### get the current services running on this machine
-&get_listening_ports() unless ($no_netstat);
+&get_listening_ports() unless $no_netstat;
 
 ### daemonize psad unless running with --no-daemon or an
 ### analysis mode
@@ -1065,6 +1074,7 @@ sub check_scan() {
         }
 
         $proto_ctrs{$pkt{'proto'}}++;
+        $protocols{$pkt{'proto'}} = '';
         if ($pkt{'proto'} eq 'tcp') {
             $top_tcp_ports{$pkt{'dp'}}++;
         } elsif ($pkt{'proto'} eq 'udp') {
@@ -1283,10 +1293,21 @@ sub check_scan() {
             }
         }
 
+
         ### increment hash values
         $scan{$pkt{'src'}}{$pkt{'dst'}}{'absnum'}++;
+
+        $scan{$pkt{'src'}}{$pkt{'dst'}}{'tot_protocols'} = 0
+            unless defined $scan{$pkt{'src'}}{$pkt{'dst'}}{'tot_protocols'};
+
+        $scan{$pkt{'src'}}{$pkt{'dst'}}{'tot_protocols'}++
+            unless defined $scan{$pkt{'src'}}{$pkt{'dst'}}{$pkt{'proto'}};
+
+        $scan{$pkt{'src'}}{$pkt{'dst'}}{$pkt{'proto'}}{'proto_pkt_ctr'}++;
+
         $scan{$pkt{'src'}}{$pkt{'dst'}}{'chain'}
             {$pkt{'chain'}}{$pkt{'intf'}}{$pkt{'proto'}}++;
+
         $curr_scan{$pkt{'src'}}{$pkt{'dst'}}{$pkt{'proto'}}{'pkts'}++;
         $curr_scan{$pkt{'src'}}{$pkt{'dst'}}
             {$pkt{'proto'}}{'flags'}{$pkt{'flags'}}++ if $pkt{'flags'};
@@ -1321,6 +1342,7 @@ sub check_scan() {
 
         if ($pkt{'proto'} eq 'tcp' or $pkt{'proto'} eq 'udp'
                 or $pkt{'proto'} eq 'udplite') {
+
             ### initialize the start and end port for the scanned port range
             if (not defined $curr_scan{$pkt{'src'}}{$pkt{'dst'}}{$pkt{'proto'}}{'strtp'}) {
                 ### make sure the initial start port is not too low
@@ -1328,7 +1350,8 @@ sub check_scan() {
                 ### make sure the initial end port is not too high
                 $curr_scan{$pkt{'src'}}{$pkt{'dst'}}{$pkt{'proto'}}{'endp'} = 0;
             }
-            if (not defined $scan{$pkt{'src'}}{$pkt{'dst'}}{$pkt{'proto'}}{'abs_sp'}) {
+            unless (defined $scan{$pkt{'src'}}{$pkt{'dst'}}{$pkt{'proto'}}
+                    and defined $scan{$pkt{'src'}}{$pkt{'dst'}}{$pkt{'proto'}}{'abs_sp'}) {
                 ### This is the absolute starting port since the
                 ### first packet was detected.  Make sure the initial
                 ### start port is not too low
@@ -1349,9 +1372,13 @@ sub check_scan() {
                 &check_range($pkt{'dp'},
                     $scan{$pkt{'src'}}{$pkt{'dst'}}{$pkt{'proto'}}{'abs_sp'},
                     $scan{$pkt{'src'}}{$pkt{'dst'}}{$pkt{'proto'}}{'abs_ep'});
+
         }
 
-        print STDERR Dumper $scan{$pkt{'src'}}{$pkt{'dst'}} if $debug and $verbose;
+        if ($debug and $verbose) {
+            print STDERR "    print Dumper scan hash $pkt{'src'} -> $pkt{'dst'}\n";
+            print STDERR Dumper $scan{$pkt{'src'}}{$pkt{'dst'}};
+        }
 
         ### attempt to passively guess the remote operating
         ### system based on the ttl, id, len, window, and tos
@@ -1432,6 +1459,8 @@ sub parse_NF_pkt_str() {
     my $is_udplite = 0;
     my $is_icmp    = 0;
     my $is_icmp6   = 0;
+    my $is_proto_num = 0;
+    my $proto_num = -1;
 
     ### with ENABLE_SYSLOG_FILE enabled, psad sees all sorts of syslog
     ### messages that aren't just from iptables (kmsgsd is not running
@@ -1610,6 +1639,9 @@ sub parse_NF_pkt_str() {
         $is_udplite = 1;
     } elsif ($pkt_str =~ /PROTO=UDP\s/) {
         $is_udp = 1;
+    } elsif ($pkt_str =~ /PROTO=(\d+)\s/) {
+        $proto_num = $1;
+        $is_proto_num = 1;
     } else {
         print STDERR "[-] err packet: unrecognized protocol\n" if $debug;
         return $PKT_ERROR;
@@ -1915,6 +1947,33 @@ sub parse_NF_pkt_str() {
                 "\t$pkt_hr->{'dst'}\t$pkt_hr->{'icode'}\t$pkt_hr->{'proto'}";
         }
 
+    } elsif ($is_proto_num) {
+
+        if ($is_ipv6) {
+
+            ### FIXME future
+
+        } else {
+
+            ### Mar 15 20:59:04 linux kernel: [810523.812773] DROP IN=eth0 OUT=
+            ### MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55
+            ### DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=3052 PROTO=29
+
+            if ($pkt_str =~ /SRC=($ipv4_re)\s+DST=($ipv4_re)\s+LEN=(\d+).*
+                      TTL=(\d+)\s+ID=(\d+).*PROTO=/x) {
+
+                ($pkt_hr->{'src'}, $pkt_hr->{'dst'}, $pkt_hr->{'ip_len'},
+                    $pkt_hr->{'ttl'}, $pkt_hr->{'ip_id'}) = ($1,$2,$3,$4,$5);
+
+                $pkt_hr->{'s_obj'} = new NetAddr::IP($pkt_hr->{'src'})
+                    or return $PKT_ERROR;
+                $pkt_hr->{'d_obj'} = new NetAddr::IP($pkt_hr->{'dst'})
+                    or return $PKT_ERROR;
+            }
+
+            $pkt_hr->{'proto'} = $proto_num;
+        }
+
     } else {
         ### Sometimes the iptables log entry gets messed up due to
         ### buffering issues so we write it to the error log.
@@ -2137,6 +2196,12 @@ sub match_snort_keywords() {
 
                 $dl = $rv if $rv > $dl;
 
+                $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'} = 0
+                    unless defined $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'};
+
+                $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'}++
+                    unless defined $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tcp'};
+
                 $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tcp'}
                     {'sid'}{$sid}{$pkt_hr->{'chain'}}{'dp'}
                         = $pkt_hr->{'dp'};
@@ -2170,6 +2235,12 @@ sub match_snort_keywords() {
 
                 $dl = $rv if $rv > $dl;
 
+                $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'} = 0
+                    unless defined $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'};
+
+                $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'}++
+                    unless defined $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'udp'};
+
                 $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'udp'}
                     {'sid'}{$sid}{$pkt_hr->{'chain'}}{'dp'}
                          = $pkt_hr->{'dp'};
@@ -2199,6 +2270,12 @@ sub match_snort_keywords() {
 
                 $dl = $rv if $rv > $dl;
 
+                $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'} = 0
+                    unless defined $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'};
+
+                $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'}++
+                    unless defined $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'icmp'};
+
                 $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'icmp'}{'sid'}
                     {$sid}{$pkt_hr->{'chain'}}{'pkts'}++;
 
@@ -2920,6 +2997,12 @@ sub add_fwsnort_sid() {
             return 0, $SIG_MATCH;
         }
 
+        $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'} = 0
+            unless defined $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'};
+
+        $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{'tot_protocols'}++
+            unless defined $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{$pkt_hr->{'proto'}};
+
         $scan{$pkt_hr->{'src'}}{$pkt_hr->{'dst'}}{$pkt_hr->{'proto'}}
             {'sid'}{$sid}{$pkt_hr->{'chain'}}{'pkts'}++;
 
@@ -3291,6 +3374,9 @@ sub psad_init() {
     ### import TOS-based passive OS fingerprinting signatures
     &import_posf_sigs() unless $no_posf;
 
+    ### import IP protocols detail (derived from /etc/protocols)
+    &import_protocol_strings();
+
     ### import auto_dl file for automatic ip/network danger
     ### level assignment
     &import_auto_dl() unless $no_auto_dl;
@@ -3465,6 +3551,12 @@ sub is_digit_range() {
     return;
 }
 
+sub is_digit() {
+    my $val = shift;
+    return 1 if $val =~ m|^\d+$|;
+    return 0;
+}
+
 sub get_connected_subnets() {
 
     my @connected_subnets = ();
@@ -4733,8 +4825,9 @@ sub assign_danger_level() {
         }
 
         DST: for my $dst (keys %{$curr_scan_hr->{$src}}) {
-            my $absnum = $scan{$src}{$dst}{'absnum'};
-            my $range;
+            my $absnum        = $scan{$src}{$dst}{'absnum'};
+            my $tot_protocols = $scan{$src}{$dst}{'tot_protocols'};
+            my $range = 0;
             my $s_port = 65535;
             my $e_port = 0;
 
@@ -4744,7 +4837,7 @@ sub assign_danger_level() {
             }
 
             ### calculate the range over _both_ tcp and udp
-            for my $proto (qw(tcp udp)) {
+            for my $proto (qw(tcp udp udplite)) {
                 next unless defined $scan{$src}{$dst}{$proto};
                 next unless defined $scan{$src}{$dst}{$proto}{'abs_sp'};
                 if ($s_port > $scan{$src}{$dst}{$proto}{'abs_sp'}) {
@@ -4766,7 +4859,8 @@ sub assign_danger_level() {
                 ### don't have enough packets to even reach danger level 1 yet.
                 next DST;
             }
-            if ($range >= $config{'PORT_RANGE_SCAN_THRESHOLD'}) {
+            if ($range >= $config{'PORT_RANGE_SCAN_THRESHOLD'}
+                    or $tot_protocols >= $config{'PROTOCOL_SCAN_THRESHOLD'}) {
                 if ($absnum < $config{'DANGER_LEVEL2'}) {
                     if ($scan_dl{$src} < 1) {
                         $scan{$src}{$dst}{'alerted'} = 0
@@ -4863,7 +4957,7 @@ sub check_scan_proto() {
 sub write_global_packet_counters() {
     open P, "> $config{'PACKET_COUNTER_FILE'}" or
         die "[*] Could not open $config{'PACKET_COUNTER_FILE'}: $!";
-    for my $proto (@protocols) {
+    for my $proto (keys %protocols) {
         next unless defined $proto_ctrs{$proto};
         printf P "%8s: %d\n", $proto, $proto_ctrs{$proto};
     }
@@ -4897,7 +4991,7 @@ sub write_src_packet_counters() {
         die "[*] Could not open $file: $!";
     for my $chain (keys %$hr) {
         for my $intf (keys %{$hr->{$chain}}) {
-            for my $proto (@protocols) {
+            for my $proto (keys %protocols) {
                 next unless defined $hr->{$chain}->{$intf}->{$proto};
                 if ($proto eq 'tcp' and $tcp_absrange) {
                     print P "${chain}_${intf}_${proto}:  ",
@@ -5568,7 +5662,7 @@ sub scan_logr_signatures() {
     my @log_sigs = ();
     my $found_sid = 0;
 
-    for my $proto (@protocols) {
+    for my $proto (keys %protocols) {
         next unless defined $scan{$src}{$dst}{$proto};
         my $hr = $scan{$src}{$dst}{$proto};
 
@@ -8516,14 +8610,18 @@ sub print_scan_status() {
             my $total_dsts = keys %{$scan{$src}};
             my $tot_pkts   = 0;
             my $uniq_sigs  = 0;
+            my $tot_protocols = 0;
             for my $dst (keys %{$scan{$src}}) {
+                if (defined $scan{$src}{$dst}{'tot_protocols'}) {
+                    $tot_protocols += $scan{$src}{$dst}{'tot_protocols'};
+                }
                 next unless defined $scan{$src}{$dst}{'absnum'};
                 $tot_pkts += $scan{$src}{$dst}{'absnum'};
             }
-            for my $proto (@protocols) {
+            for my $proto (keys %protocols) {
                 for my $dst (keys %{$scan{$src}}) {
                     next unless defined $scan{$src}{$dst}{$proto}
-                        and defined $scan{$src}{$dst}{$proto}{'sid'};
+                            and defined $scan{$src}{$dst}{$proto}{'sid'};
                     for my $sid (keys %{$scan{$src}{$dst}{$proto}{'sid'}}) {
                         $uniq_sigs++;
                     }
@@ -8532,13 +8630,15 @@ sub print_scan_status() {
 
             ### source IP line
             my $src_str = "\nSRC:  $src, DL: $dl, Dsts: $total_dsts" .
-                ", Pkts: $tot_pkts, Unique sigs: $uniq_sigs";
+                ", Pkts: $tot_pkts, Total protocols: $tot_protocols, " .
+                "Unique sigs: $uniq_sigs";
 
             my $src_obj = new NetAddr::IP($src) or die "[*] NetAddr::IP($src) error";
             if ($src_obj->version() == 6) {
                 $src_str = "\nSRC:  $src (" . $src_obj->short() .
                     "), DL: $dl, Dsts: $total_dsts" .
-                    ", Pkts: $tot_pkts, Unique sigs: $uniq_sigs";
+                    ", Pkts: $tot_pkts, Total protocols: $tot_protocols, " .
+                    "Unique sigs: $uniq_sigs";
             }
 
             unless ($analyze_mode) {
@@ -8586,8 +8686,10 @@ sub print_scan_status() {
                     for my $chain (keys %{$scan{$src}{$dst}{'chain'}}) {
                         for my $intf (keys %{$scan{$src}{$dst}{'chain'}
                                     {$chain}}) {
+                            my $tot_scanned_protocols = 0;
                             for my $proto (keys %{$scan{$src}{$dst}{'chain'}
                                         {$chain}{$intf}}) {
+                                $tot_scanned_protocols++;
                                 next unless $proto eq 'tcp' or $proto eq 'udp'
                                     or $proto eq 'udplite';
                                 my $start_port = $scan{$src}{$dst}
@@ -8606,12 +8708,14 @@ sub print_scan_status() {
                                         "$ctr, Chain: $chain, Intf: $intf\n";
                                 }
                             }
+                            push @lines, "        Total scanned IP protocols: " .
+                                "$tot_scanned_protocols, Chain: $chain, Intf: $intf\n";
                         }
                     }
                 }
 
                 ### signature matches
-                for my $proto (@protocols) {
+                for my $proto (keys %protocols) {
                     next unless defined $scan{$src}{$dst}{$proto}
                         and defined $scan{$src}{$dst}{$proto}{'sid'};
 
@@ -8834,16 +8938,37 @@ sub import_packet_counters() {
 }
 
 sub print_packet_counters() {
-    my $str = "    Total packet counters: ";
-    for my $proto (@protocols) {
+    my $str = "    Total protocol packet counters:\n";
+    for my $proto (sort keys %protocols) {
         next unless defined $proto_ctrs{$proto};
-        $str .= "$proto: $proto_ctrs{$proto} ";
+        if (defined $protocol_strings{$proto}) {
+            $str .= sprintf "%12s: %s\n", $protocol_strings{$proto}{'name'},
+                "$proto_ctrs{$proto} pkts, ($protocol_strings{$proto}{'desc'})";
+        } else {
+            $str .= sprintf "%12s: %s\n", $proto, "$proto_ctrs{$proto} pkts";
+        }
     }
-    $str .= "\n\n";
+    $str .= "\n";
 
     return [$str];
 }
 
+sub import_protocol_strings() {
+    open F, "< $config{'PROTOCOLS_FILE'}" or die "[*] Could not ",
+        "open $config{'PROTOCOLS_FILE'}: $!";
+    while (<F>) {
+        ### gre     47      GRE             # General Routing Encapsulation
+        next if /^\s*#/;
+        if (/^\s*(\S+)\s+(\d+)\s+\S+\s+#\s+(.*)/) {
+            $protocol_strings{$2}{'name'} = $1;
+            $protocol_strings{$2}{'desc'} = $3;
+        }
+    }
+    close F;
+
+    return;
+}
+
 sub import_dshield_stats() {
     if ($config{'ENABLE_DSHIELD_ALERTS'} eq 'Y'
             and -e $config{'DSHIELD_COUNTER_FILE'}) {
@@ -9005,6 +9130,7 @@ sub import_ip_dirs() {
                         $scan{$src}{$dst}{'chain'}{$chain}{$intf}{$proto}
                             += $pkts;
                         $scan{$src}{$dst}{'absnum'} += $pkts;
+                        $scan{$src}{$dst}{'tot_protocols'}++;
                     } elsif ($line =~ /^(\w+)_(\w+)_(tcp|udp):
                             \s+(\d+)\s+\[(\S+)\]/x) {
                         $chain = $1;
@@ -9025,6 +9151,19 @@ sub import_ip_dirs() {
                         $scan{$src}{$dst}{'chain'}{$chain}{$intf}{$proto}
                             += $pkts;
                         $scan{$src}{$dst}{'absnum'} += $pkts;
+                        $scan{$src}{$dst}{'tot_protocols'}++;
+                    } elsif ($line =~ /^(\w+)_(\w+)_(\d+):\s+(\d+)/) {
+                        $chain = $1;
+                        $intf  = $2;
+                        $proto = $3;
+                        $pkts  = $4;
+                        $chain = uc $chain if $chain eq 'input'
+                                or $chain eq 'forward'
+                                or $chain eq 'output';
+                        $scan{$src}{$dst}{'chain'}{$chain}{$intf}{$proto}
+                            += $pkts;
+                        $scan{$src}{$dst}{'absnum'} += $pkts;
+                        $scan{$src}{$dst}{'tot_protocols'}++;
                     }
                 }
             }
@@ -10732,7 +10871,7 @@ sub required_vars() {
         ETC_RSYSLOG_CONF IFCFGTYPE ENABLE_WHOIS_FORCE_ASCII
         ENABLE_WHOIS_FORCE_SRC_IP ENABLE_IPV6_DETECTION
         PERSISTENCE_CTR_THRESHOLD MAX_SCAN_IP_PAIRS INSTALL_ROOT
-        ICMP6_TYPES_FILE
+        ICMP6_TYPES_FILE PROTOCOL_SCAN_THRESHOLD PROTOCOLS_FILE
     ));
     &defined_vars(\@required_vars);
     return;

diff --git a/psad.conf b/psad.conf
index b6c006d..9402a5c 100644 (file)
--- a/psad.conf
+++ b/psad.conf
@@ -95,6 +95,11 @@ SNORT_SID_STR               SID;
 ### to 0 if you want psad to be extra paranoid, or 30000 if not.
 PORT_RANGE_SCAN_THRESHOLD   1;
 
+### For IP protocol scan detection (nmap -sO).  While it may be relatively
+### common for a host to trigger on tcp, udp, and icmp, it is more unusual if
+### a host triggers on, say, five different IP protocols
+PROTOCOL_SCAN_THRESHOLD     5;
+
 ### If "Y", means that scans will never timeout.  This is useful
 ### for catching scans that take place over long periods of time
 ### where the attacker is trying to slip beneath the IDS thresholds.
@@ -488,6 +493,7 @@ ULOG_DATA_FILE              $PSAD_DIR/ulogd.log;
 FW_CHECK_FILE               $PSAD_DIR/fw_check;
 DSHIELD_EMAIL_FILE          $PSAD_DIR/dshield.email;
 SIGS_FILE                   $PSAD_CONF_DIR/signatures;
+PROTOCOLS_FILE              $PSAD_CONF_DIR/protocols;
 ICMP_TYPES_FILE             $PSAD_CONF_DIR/icmp_types;
 ICMP6_TYPES_FILE            $PSAD_CONF_DIR/icmp6_types;
 AUTO_DL_FILE                $PSAD_CONF_DIR/auto_dl;

diff --git a/test/conf/default_psad.conf b/test/conf/default_psad.conf
index 39913a8..d391acc 100644 (file)
--- a/test/conf/default_psad.conf
+++ b/test/conf/default_psad.conf
@@ -93,6 +93,11 @@ SNORT_SID_STR               SID;
 ### to 0 if you want psad to be extra paranoid, or 30000 if not.
 PORT_RANGE_SCAN_THRESHOLD   1;
 
+### For IP protocol scan detection (nmap -sO).  While it may be relatively
+### common for a host to trigger on tcp, udp, and icmp, it is more unusual if
+### a host triggers on, say, five different IP protocols
+PROTOCOL_SCAN_THRESHOLD     5;
+
 ### If "Y", means that scans will never timeout.  This is useful
 ### for catching scans that take place over long periods of time
 ### where the attacker is trying to slip beneath the IDS thresholds.
@@ -486,6 +491,7 @@ ULOG_DATA_FILE              $PSAD_DIR/ulogd.log;
 FW_CHECK_FILE               $PSAD_DIR/fw_check;
 DSHIELD_EMAIL_FILE          $PSAD_DIR/dshield.email;
 SIGS_FILE                   $PSAD_CONF_DIR/signatures;
+PROTOCOLS_FILE              $PSAD_CONF_DIR/protocols;
 ICMP_TYPES_FILE             $PSAD_CONF_DIR/icmp_types;
 ICMP6_TYPES_FILE            $PSAD_CONF_DIR/icmp6_types;
 AUTO_DL_FILE                $PSAD_CONF_DIR/auto_dl;

diff --git a/test/conf/disable_ipv6_detection.conf b/test/conf/disable_ipv6_detection.conf
index 27a8dc2..6d5e08e 100644 (file)
--- a/test/conf/disable_ipv6_detection.conf
+++ b/test/conf/disable_ipv6_detection.conf
@@ -93,6 +93,11 @@ SNORT_SID_STR               SID;
 ### to 0 if you want psad to be extra paranoid, or 30000 if not.
 PORT_RANGE_SCAN_THRESHOLD   1;
 
+### For IP protocol scan detection (nmap -sO).  While it may be relatively
+### common for a host to trigger on tcp, udp, and icmp, it is more unusual if
+### a host triggers on, say, five different IP protocols
+PROTOCOL_SCAN_THRESHOLD     5;
+
 ### If "Y", means that scans will never timeout.  This is useful
 ### for catching scans that take place over long periods of time
 ### where the attacker is trying to slip beneath the IDS thresholds.
@@ -486,6 +491,7 @@ ULOG_DATA_FILE              $PSAD_DIR/ulogd.log;
 FW_CHECK_FILE               $PSAD_DIR/fw_check;
 DSHIELD_EMAIL_FILE          $PSAD_DIR/dshield.email;
 SIGS_FILE                   $PSAD_CONF_DIR/signatures;
+PROTOCOLS_FILE              $PSAD_CONF_DIR/protocols;
 ICMP_TYPES_FILE             $PSAD_CONF_DIR/icmp_types;
 ICMP6_TYPES_FILE            $PSAD_CONF_DIR/icmp6_types;
 AUTO_DL_FILE                $PSAD_CONF_DIR/auto_dl;

diff --git a/test/conf/enable_ack_detection.conf b/test/conf/enable_ack_detection.conf
index 70abff0..450955d 100644 (file)
--- a/test/conf/enable_ack_detection.conf
+++ b/test/conf/enable_ack_detection.conf
@@ -93,6 +93,11 @@ SNORT_SID_STR               SID;
 ### to 0 if you want psad to be extra paranoid, or 30000 if not.
 PORT_RANGE_SCAN_THRESHOLD   1;
 
+### For IP protocol scan detection (nmap -sO).  While it may be relatively
+### common for a host to trigger on tcp, udp, and icmp, it is more unusual if
+### a host triggers on, say, five different IP protocols
+PROTOCOL_SCAN_THRESHOLD     5;
+
 ### If "Y", means that scans will never timeout.  This is useful
 ### for catching scans that take place over long periods of time
 ### where the attacker is trying to slip beneath the IDS thresholds.
@@ -486,6 +491,7 @@ ULOG_DATA_FILE              $PSAD_DIR/ulogd.log;
 FW_CHECK_FILE               $PSAD_DIR/fw_check;
 DSHIELD_EMAIL_FILE          $PSAD_DIR/dshield.email;
 SIGS_FILE                   $PSAD_CONF_DIR/signatures;
+PROTOCOLS_FILE              $PSAD_CONF_DIR/protocols;
 ICMP_TYPES_FILE             $PSAD_CONF_DIR/icmp_types;
 ICMP6_TYPES_FILE            $PSAD_CONF_DIR/icmp6_types;
 AUTO_DL_FILE                $PSAD_CONF_DIR/auto_dl;

diff --git a/test/conf/ignore_tcp.conf b/test/conf/ignore_tcp.conf
index f5ace48..331ce94 100644 (file)
--- a/test/conf/ignore_tcp.conf
+++ b/test/conf/ignore_tcp.conf
@@ -93,6 +93,11 @@ SNORT_SID_STR               SID;
 ### to 0 if you want psad to be extra paranoid, or 30000 if not.
 PORT_RANGE_SCAN_THRESHOLD   1;
 
+### For IP protocol scan detection (nmap -sO).  While it may be relatively
+### common for a host to trigger on tcp, udp, and icmp, it is more unusual if
+### a host triggers on, say, five different IP protocols
+PROTOCOL_SCAN_THRESHOLD     5;
+
 ### If "Y", means that scans will never timeout.  This is useful
 ### for catching scans that take place over long periods of time
 ### where the attacker is trying to slip beneath the IDS thresholds.
@@ -486,6 +491,7 @@ ULOG_DATA_FILE              $PSAD_DIR/ulogd.log;
 FW_CHECK_FILE               $PSAD_DIR/fw_check;
 DSHIELD_EMAIL_FILE          $PSAD_DIR/dshield.email;
 SIGS_FILE                   $PSAD_CONF_DIR/signatures;
+PROTOCOLS_FILE              $PSAD_CONF_DIR/protocols;
 ICMP_TYPES_FILE             $PSAD_CONF_DIR/icmp_types;
 ICMP6_TYPES_FILE            $PSAD_CONF_DIR/icmp6_types;
 AUTO_DL_FILE                $PSAD_CONF_DIR/auto_dl;

diff --git a/test/conf/ignore_udp.conf b/test/conf/ignore_udp.conf
index 99dea8d..46d2998 100644 (file)
--- a/test/conf/ignore_udp.conf
+++ b/test/conf/ignore_udp.conf
@@ -93,6 +93,11 @@ SNORT_SID_STR               SID;
 ### to 0 if you want psad to be extra paranoid, or 30000 if not.
 PORT_RANGE_SCAN_THRESHOLD   1;
 
+### For IP protocol scan detection (nmap -sO).  While it may be relatively
+### common for a host to trigger on tcp, udp, and icmp, it is more unusual if
+### a host triggers on, say, five different IP protocols
+PROTOCOL_SCAN_THRESHOLD     5;
+
 ### If "Y", means that scans will never timeout.  This is useful
 ### for catching scans that take place over long periods of time
 ### where the attacker is trying to slip beneath the IDS thresholds.
@@ -486,6 +491,7 @@ ULOG_DATA_FILE              $PSAD_DIR/ulogd.log;
 FW_CHECK_FILE               $PSAD_DIR/fw_check;
 DSHIELD_EMAIL_FILE          $PSAD_DIR/dshield.email;
 SIGS_FILE                   $PSAD_CONF_DIR/signatures;
+PROTOCOLS_FILE              $PSAD_CONF_DIR/protocols;
 ICMP_TYPES_FILE             $PSAD_CONF_DIR/icmp_types;
 ICMP6_TYPES_FILE            $PSAD_CONF_DIR/icmp6_types;
 AUTO_DL_FILE                $PSAD_CONF_DIR/auto_dl;

diff --git a/test/conf/require_DROP_syslog_prefix_str.conf b/test/conf/require_DROP_syslog_prefix_str.conf
index cd0bb16..b0e8804 100644 (file)
--- a/test/conf/require_DROP_syslog_prefix_str.conf
+++ b/test/conf/require_DROP_syslog_prefix_str.conf
@@ -93,6 +93,11 @@ SNORT_SID_STR               SID;
 ### to 0 if you want psad to be extra paranoid, or 30000 if not.
 PORT_RANGE_SCAN_THRESHOLD   1;
 
+### For IP protocol scan detection (nmap -sO).  While it may be relatively
+### common for a host to trigger on tcp, udp, and icmp, it is more unusual if
+### a host triggers on, say, five different IP protocols
+PROTOCOL_SCAN_THRESHOLD     5;
+
 ### If "Y", means that scans will never timeout.  This is useful
 ### for catching scans that take place over long periods of time
 ### where the attacker is trying to slip beneath the IDS thresholds.
@@ -486,6 +491,7 @@ ULOG_DATA_FILE              $PSAD_DIR/ulogd.log;
 FW_CHECK_FILE               $PSAD_DIR/fw_check;
 DSHIELD_EMAIL_FILE          $PSAD_DIR/dshield.email;
 SIGS_FILE                   $PSAD_CONF_DIR/signatures;
+PROTOCOLS_FILE              $PSAD_CONF_DIR/protocols;
 ICMP_TYPES_FILE             $PSAD_CONF_DIR/icmp_types;
 ICMP6_TYPES_FILE            $PSAD_CONF_DIR/icmp6_types;
 AUTO_DL_FILE                $PSAD_CONF_DIR/auto_dl;

diff --git a/test/conf/require_missing_syslog_prefix_str.conf b/test/conf/require_missing_syslog_prefix_str.conf
index 90b49be..89ae0d1 100644 (file)
--- a/test/conf/require_missing_syslog_prefix_str.conf
+++ b/test/conf/require_missing_syslog_prefix_str.conf
@@ -93,6 +93,11 @@ SNORT_SID_STR               SID;
 ### to 0 if you want psad to be extra paranoid, or 30000 if not.
 PORT_RANGE_SCAN_THRESHOLD   1;
 
+### For IP protocol scan detection (nmap -sO).  While it may be relatively
+### common for a host to trigger on tcp, udp, and icmp, it is more unusual if
+### a host triggers on, say, five different IP protocols
+PROTOCOL_SCAN_THRESHOLD     5;
+
 ### If "Y", means that scans will never timeout.  This is useful
 ### for catching scans that take place over long periods of time
 ### where the attacker is trying to slip beneath the IDS thresholds.
@@ -486,6 +491,7 @@ ULOG_DATA_FILE              $PSAD_DIR/ulogd.log;
 FW_CHECK_FILE               $PSAD_DIR/fw_check;
 DSHIELD_EMAIL_FILE          $PSAD_DIR/dshield.email;
 SIGS_FILE                   $PSAD_CONF_DIR/signatures;
+PROTOCOLS_FILE              $PSAD_CONF_DIR/protocols;
 ICMP_TYPES_FILE             $PSAD_CONF_DIR/icmp_types;
 ICMP6_TYPES_FILE            $PSAD_CONF_DIR/icmp6_types;
 AUTO_DL_FILE                $PSAD_CONF_DIR/auto_dl;

diff --git a/test/scans/iptables/proto_scan b/test/scans/iptables/proto_scan
new file mode 100644 (file)
index 0000000..3922aca
--- /dev/null
+++ b/test/scans/iptables/proto_scan
@@ -0,0 +1,510 @@
+Mar 15 20:58:59 linux kernel: [810518.886511] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=50515 PROTO=162 
+Mar 15 20:58:59 linux kernel: [810518.886565] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=47785 PROTO=61 
+Mar 15 20:58:59 linux kernel: [810518.886616] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=40049 PROTO=187 
+Mar 15 20:58:59 linux kernel: [810518.886685] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=3799 PROTO=214 
+Mar 15 20:58:59 linux kernel: [810518.886753] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=40147 PROTO=UDPLITE INCOMPLETE [0 bytes] 
+Mar 15 20:58:59 linux kernel: [810518.886816] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=58728 PROTO=140 
+Mar 15 20:58:59 linux kernel: [810518.886899] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=10426 PROTO=0 
+Mar 15 20:58:59 linux kernel: [810518.886967] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=24781 PROTO=12 
+Mar 15 20:58:59 linux kernel: [810518.887031] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=21757 PROTO=83 
+Mar 15 20:58:59 linux kernel: [810518.887094] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=19549 PROTO=73 
+Mar 15 20:59:00 linux kernel: [810519.987655] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=40245 PROTO=73 
+Mar 15 20:59:00 linux kernel: [810519.987708] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=51713 PROTO=83 
+Mar 15 20:59:00 linux kernel: [810519.987751] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=53698 PROTO=12 
+Mar 15 20:59:00 linux kernel: [810519.987791] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=32073 PROTO=0 
+Mar 15 20:59:00 linux kernel: [810519.987856] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=1517 PROTO=140 
+Mar 15 20:59:00 linux kernel: [810519.987903] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=58602 PROTO=UDPLITE INCOMPLETE [0 bytes] 
+Mar 15 20:59:00 linux kernel: [810519.987974] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=9000 PROTO=214 
+Mar 15 20:59:00 linux kernel: [810519.988042] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=31595 PROTO=187 
+Mar 15 20:59:00 linux kernel: [810519.988113] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=31722 PROTO=61 
+Mar 15 20:59:00 linux kernel: [810519.988182] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=684 PROTO=162 
+Mar 15 20:59:00 linux kernel: [810520.087789] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=20106 PROTO=188 
+Mar 15 20:59:00 linux kernel: [810520.087839] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=24202 PROTO=199 
+Mar 15 20:59:00 linux kernel: [810520.090065] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=30219 PROTO=37 
+Mar 15 20:59:00 linux kernel: [810520.090114] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=41807 PROTO=40 
+Mar 15 20:59:00 linux kernel: [810520.090153] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=20452 PROTO=185 
+Mar 15 20:59:00 linux kernel: [810520.090224] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=15154 PROTO=240 
+Mar 15 20:59:00 linux kernel: [810520.090293] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=11942 PROTO=126 
+Mar 15 20:59:00 linux kernel: [810520.090360] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=1085 PROTO=31 
+Mar 15 20:59:00 linux kernel: [810520.090418] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=6268 PROTO=85 
+Mar 15 20:59:00 linux kernel: [810520.090486] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=62600 PROTO=122 
+Mar 15 20:59:01 linux kernel: [810520.187918] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=57692 PROTO=199 
+Mar 15 20:59:01 linux kernel: [810520.187967] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=60060 PROTO=188 
+Mar 15 20:59:01 linux kernel: [810520.190138] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=7798 PROTO=40 
+Mar 15 20:59:01 linux kernel: [810520.190188] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=53625 PROTO=37 
+Mar 15 20:59:01 linux kernel: [810520.192392] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=914 PROTO=122 
+Mar 15 20:59:01 linux kernel: [810520.192441] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=55711 PROTO=85 
+Mar 15 20:59:01 linux kernel: [810520.192480] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=29228 PROTO=31 
+Mar 15 20:59:01 linux kernel: [810520.192528] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=7921 PROTO=126 
+Mar 15 20:59:01 linux kernel: [810520.192587] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=62798 PROTO=240 
+Mar 15 20:59:01 linux kernel: [810520.192655] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=11812 PROTO=185 
+Mar 15 20:59:01 linux kernel: [810520.288069] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=28 TOS=0x00 PREC=0x00 TTL=42 ID=45961 PROTO=UDP SPT=39480 DPT=39480 LEN=8 
+Mar 15 20:59:01 linux kernel: [810520.288126] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=758 PROTO=191 
+Mar 15 20:59:01 linux kernel: [810520.290352] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=63750 PROTO=216 
+Mar 15 20:59:01 linux kernel: [810520.290404] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=55324 PROTO=160 
+Mar 15 20:59:01 linux kernel: [810520.292613] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=61730 PROTO=64 
+Mar 15 20:59:01 linux kernel: [810520.292662] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=55162 PROTO=159 
+Mar 15 20:59:01 linux kernel: [810520.292702] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=15905 PROTO=203 
+Mar 15 20:59:01 linux kernel: [810520.292762] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=47335 PROTO=109 
+Mar 15 20:59:01 linux kernel: [810520.294994] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=61890 PROTO=173 
+Mar 15 20:59:01 linux kernel: [810520.295044] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=6096 PROTO=113 
+Mar 15 20:59:01 linux kernel: [810520.388188] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=39226 PROTO=191 
+Mar 15 20:59:01 linux kernel: [810520.388244] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=28 TOS=0x00 PREC=0x00 TTL=46 ID=47716 PROTO=UDP SPT=39481 DPT=39480 LEN=8 
+Mar 15 20:59:01 linux kernel: [810520.390431] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=6911 PROTO=216 
+Mar 15 20:59:01 linux kernel: [810520.392632] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=12745 PROTO=160 
+Mar 15 20:59:01 linux kernel: [810520.394826] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=33102 PROTO=109 
+Mar 15 20:59:01 linux kernel: [810520.394874] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=62661 PROTO=203 
+Mar 15 20:59:01 linux kernel: [810520.394915] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=20009 PROTO=159 
+Mar 15 20:59:01 linux kernel: [810520.394989] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=621 PROTO=64 
+Mar 15 20:59:01 linux kernel: [810520.397227] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=27002 PROTO=113 
+Mar 15 20:59:01 linux kernel: [810520.397274] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=10121 PROTO=173 
+Mar 15 20:59:01 linux kernel: [810520.488353] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=44611 PROTO=217 
+Mar 15 20:59:01 linux kernel: [810520.488403] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=4903 PROTO=78 
+Mar 15 20:59:01 linux kernel: [810520.490600] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=27691 PROTO=99 
+Mar 15 20:59:01 linux kernel: [810520.492811] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=15091 PROTO=251 
+Mar 15 20:59:01 linux kernel: [810520.495006] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=60735 PROTO=179 
+Mar 15 20:59:01 linux kernel: [810520.495054] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=61017 PROTO=213 
+Mar 15 20:59:01 linux kernel: [810520.495100] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=45083 PROTO=15 
+Mar 15 20:59:01 linux kernel: [810520.497357] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=9871 PROTO=176 
+Mar 15 20:59:01 linux kernel: [810520.497405] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=22753 PROTO=90 
+Mar 15 20:59:01 linux kernel: [810520.497443] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=51800 PROTO=141 
+Mar 15 20:59:01 linux kernel: [810520.588471] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=16355 PROTO=78 
+Mar 15 20:59:01 linux kernel: [810520.588724] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=6902 PROTO=217 
+Mar 15 20:59:01 linux kernel: [810520.590944] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=61203 PROTO=99 
+Mar 15 20:59:01 linux kernel: [810520.593211] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=34570 PROTO=251 
+Mar 15 20:59:01 linux kernel: [810520.595384] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=37105 PROTO=15 
+Mar 15 20:59:01 linux kernel: [810520.595431] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=5677 PROTO=213 
+Mar 15 20:59:01 linux kernel: [810520.595471] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=19643 PROTO=179 
+Mar 15 20:59:01 linux kernel: [810520.597670] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=3374 PROTO=141 
+Mar 15 20:59:01 linux kernel: [810520.597717] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=29748 PROTO=90 
+Mar 15 20:59:01 linux kernel: [810520.597756] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=57833 PROTO=176 
+Mar 15 20:59:01 linux kernel: [810520.688605] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=71 PROTO=131 
+Mar 15 20:59:01 linux kernel: [810520.688655] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=40714 PROTO=38 
+Mar 15 20:59:01 linux kernel: [810520.691021] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=20773 PROTO=253 
+Mar 15 20:59:01 linux kernel: [810520.693301] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=8954 PROTO=108 
+Mar 15 20:59:01 linux kernel: [810520.695484] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=55197 PROTO=243 
+Mar 15 20:59:01 linux kernel: [810520.695532] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=9528 PROTO=112 
+Mar 15 20:59:01 linux kernel: [810520.697718] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=31556 PROTO=45 
+Mar 15 20:59:01 linux kernel: [810520.697765] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=63599 PROTO=23 
+Mar 15 20:59:01 linux kernel: [810520.699965] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=9157 PROTO=34 
+Mar 15 20:59:01 linux kernel: [810520.700038] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=38718 PROTO=63 
+Mar 15 20:59:01 linux kernel: [810520.788740] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=62961 PROTO=38 
+Mar 15 20:59:01 linux kernel: [810520.788789] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=17475 PROTO=131 
+Mar 15 20:59:01 linux kernel: [810520.791127] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=43602 PROTO=253 
+Mar 15 20:59:01 linux kernel: [810520.793403] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=14752 PROTO=108 
+Mar 15 20:59:01 linux kernel: [810520.795584] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=27011 PROTO=112 
+Mar 15 20:59:01 linux kernel: [810520.795632] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=19689 PROTO=243 
+Mar 15 20:59:01 linux kernel: [810520.797813] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=18478 PROTO=23 
+Mar 15 20:59:01 linux kernel: [810520.797861] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=36151 PROTO=45 
+Mar 15 20:59:01 linux kernel: [810520.800089] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=28844 PROTO=63 
+Mar 15 20:59:01 linux kernel: [810520.800136] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=26978 PROTO=34 
+Mar 15 20:59:01 linux kernel: [810520.888962] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=47854 PROTO=157 
+Mar 15 20:59:01 linux kernel: [810520.889011] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=44761 PROTO=11 
+Mar 15 20:59:01 linux kernel: [810520.891240] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=46005 PROTO=135 
+Mar 15 20:59:01 linux kernel: [810520.893519] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=33128 PROTO=125 
+Mar 15 20:59:01 linux kernel: [810520.895697] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=43856 PROTO=48 
+Mar 15 20:59:01 linux kernel: [810520.895745] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=14395 PROTO=72 
+Mar 15 20:59:01 linux kernel: [810520.898006] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=52 TOS=0x00 PREC=0x00 TTL=49 ID=20091 PROTO=132 
+Mar 15 20:59:01 linux kernel: [810520.898054] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=21237 PROTO=118 
+Mar 15 20:59:01 linux kernel: [810520.900215] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=47071 PROTO=127 
+Mar 15 20:59:01 linux kernel: [810520.900264] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=45817 PROTO=13 
+Mar 15 20:59:01 linux kernel: [810520.989103] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=29274 PROTO=11 
+Mar 15 20:59:01 linux kernel: [810520.989153] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=24108 PROTO=157 
+Mar 15 20:59:01 linux kernel: [810520.991345] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=58273 PROTO=135 
+Mar 15 20:59:01 linux kernel: [810520.993615] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=29977 PROTO=125 
+Mar 15 20:59:01 linux kernel: [810520.995785] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=30891 PROTO=72 
+Mar 15 20:59:01 linux kernel: [810520.995833] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=15201 PROTO=48 
+Mar 15 20:59:01 linux kernel: [810520.998078] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=33098 PROTO=118 
+Mar 15 20:59:01 linux kernel: [810520.998126] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=52 TOS=0x00 PREC=0x00 TTL=58 ID=23275 PROTO=132 
+Mar 15 20:59:01 linux kernel: [810521.000311] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=11037 PROTO=13 
+Mar 15 20:59:01 linux kernel: [810521.000360] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=25011 PROTO=127 
+Mar 15 20:59:01 linux kernel: [810521.089243] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=11393 PROTO=33 
+Mar 15 20:59:01 linux kernel: [810521.089292] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=16431 PROTO=229 
+Mar 15 20:59:01 linux kernel: [810521.091497] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=33104 PROTO=177 
+Mar 15 20:59:01 linux kernel: [810521.093721] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=35776 PROTO=14 
+Mar 15 20:59:01 linux kernel: [810521.095896] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=47811 PROTO=128 
+Mar 15 20:59:01 linux kernel: [810521.095944] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=46477 PROTO=88 
+Mar 15 20:59:01 linux kernel: [810521.098195] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=33920 PROTO=168 
+Mar 15 20:59:01 linux kernel: [810521.098243] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=9389 PROTO=43 
+Mar 15 20:59:01 linux kernel: [810521.100428] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=39622 PROTO=196 
+Mar 15 20:59:01 linux kernel: [810521.100476] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=1436 PROTO=180 
+Mar 15 20:59:02 linux kernel: [810521.189373] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=23140 PROTO=229 
+Mar 15 20:59:02 linux kernel: [810521.189423] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=22662 PROTO=33 
+Mar 15 20:59:02 linux kernel: [810521.191593] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=14817 PROTO=177 
+Mar 15 20:59:02 linux kernel: [810521.193815] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=26465 PROTO=14 
+Mar 15 20:59:02 linux kernel: [810521.195993] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=20286 PROTO=88 
+Mar 15 20:59:02 linux kernel: [810521.196041] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=54102 PROTO=128 
+Mar 15 20:59:02 linux kernel: [810521.198284] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=39442 PROTO=43 
+Mar 15 20:59:02 linux kernel: [810521.198332] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=46484 PROTO=168 
+Mar 15 20:59:02 linux kernel: [810521.200517] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=35185 PROTO=180 
+Mar 15 20:59:02 linux kernel: [810521.200566] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=49440 PROTO=196 
+Mar 15 20:59:02 linux kernel: [810521.289524] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=16318 PROTO=227 
+Mar 15 20:59:02 linux kernel: [810521.289574] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=13982 PROTO=115 
+Mar 15 20:59:02 linux kernel: [810521.291757] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=62970 PROTO=94 
+Mar 15 20:59:02 linux kernel: [810521.293939] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=54089 PROTO=174 
+Mar 15 20:59:02 linux kernel: [810521.296123] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=49539 PROTO=9 
+Mar 15 20:59:02 linux kernel: [810521.296172] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=19261 PROTO=8 
+Mar 15 20:59:02 linux kernel: [810521.298392] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=5252 PROTO=66 
+Mar 15 20:59:02 linux kernel: [810521.298440] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=518 PROTO=215 
+Mar 15 20:59:02 linux kernel: [810521.300621] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=56195 PROTO=30 
+Mar 15 20:59:02 linux kernel: [810521.300670] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=42715 PROTO=84 
+Mar 15 20:59:02 linux kernel: [810521.389645] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=36427 PROTO=115 
+Mar 15 20:59:02 linux kernel: [810521.389694] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=12873 PROTO=227 
+Mar 15 20:59:02 linux kernel: [810521.391880] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=35097 PROTO=94 
+Mar 15 20:59:02 linux kernel: [810521.394057] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=21693 PROTO=174 
+Mar 15 20:59:02 linux kernel: [810521.396228] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=8869 PROTO=8 
+Mar 15 20:59:02 linux kernel: [810521.396276] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=60832 PROTO=9 
+Mar 15 20:59:02 linux kernel: [810521.398485] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=21290 PROTO=215 
+Mar 15 20:59:02 linux kernel: [810521.398533] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=38182 PROTO=66 
+Mar 15 20:59:02 linux kernel: [810521.400712] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=54958 PROTO=84 
+Mar 15 20:59:02 linux kernel: [810521.400761] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=1308 PROTO=30 
+Mar 15 20:59:02 linux kernel: [810521.489790] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=385 PROTO=47 
+Mar 15 20:59:02 linux kernel: [810521.489838] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=7867 PROTO=52 
+Mar 15 20:59:02 linux kernel: [810521.492026] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=8848 PROTO=181 
+Mar 15 20:59:02 linux kernel: [810521.494208] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=39558 PROTO=32 
+Mar 15 20:59:02 linux kernel: [810521.496386] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=23703 PROTO=175 
+Mar 15 20:59:02 linux kernel: [810521.496433] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=90 PROTO=75 
+Mar 15 20:59:02 linux kernel: [810521.498620] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=19429 PROTO=121 
+Mar 15 20:59:02 linux kernel: [810521.498668] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=53094 PROTO=70 
+Mar 15 20:59:02 linux kernel: [810521.500848] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=61487 PROTO=81 
+Mar 15 20:59:02 linux kernel: [810521.500935] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=557 PROTO=224 
+Mar 15 20:59:02 linux kernel: [810521.589920] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=55579 PROTO=52 
+Mar 15 20:59:02 linux kernel: [810521.589969] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=57732 PROTO=47 
+Mar 15 20:59:02 linux kernel: [810521.592150] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=59048 PROTO=181 
+Mar 15 20:59:02 linux kernel: [810521.594320] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=8606 PROTO=32 
+Mar 15 20:59:02 linux kernel: [810521.596491] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=26951 PROTO=75 
+Mar 15 20:59:02 linux kernel: [810521.596539] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=39228 PROTO=175 
+Mar 15 20:59:02 linux kernel: [810521.598727] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=24323 PROTO=70 
+Mar 15 20:59:02 linux kernel: [810521.598775] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=39317 PROTO=121 
+Mar 15 20:59:02 linux kernel: [810521.600988] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=15361 PROTO=224 
+Mar 15 20:59:02 linux kernel: [810521.601037] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=9918 PROTO=81 
+Mar 15 20:59:02 linux kernel: [810521.690065] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=34345 PROTO=195 
+Mar 15 20:59:02 linux kernel: [810521.690113] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=33601 PROTO=53 
+Mar 15 20:59:02 linux kernel: [810521.692302] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=24189 PROTO=178 
+Mar 15 20:59:02 linux kernel: [810521.694503] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=43150 PROTO=68 
+Mar 15 20:59:02 linux kernel: [810521.696678] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=63906 PROTO=123 
+Mar 15 20:59:02 linux kernel: [810521.696726] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=18188 PROTO=237 
+Mar 15 20:59:02 linux kernel: [810521.698930] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=11590 PROTO=96 
+Mar 15 20:59:02 linux kernel: [810521.698977] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=35691 PROTO=189 
+Mar 15 20:59:02 linux kernel: [810521.701155] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=47235 PROTO=27 
+Mar 15 20:59:02 linux kernel: [810521.701203] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=27582 PROTO=164 
+Mar 15 20:59:02 linux kernel: [810521.790196] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=48727 PROTO=53 
+Mar 15 20:59:02 linux kernel: [810521.790245] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=43902 PROTO=195 
+Mar 15 20:59:02 linux kernel: [810521.792420] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=58400 PROTO=178 
+Mar 15 20:59:02 linux kernel: [810521.794590] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=51321 PROTO=68 
+Mar 15 20:59:02 linux kernel: [810521.796779] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=19564 PROTO=237 
+Mar 15 20:59:02 linux kernel: [810521.796826] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=17418 PROTO=123 
+Mar 15 20:59:02 linux kernel: [810521.799030] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=58748 PROTO=189 
+Mar 15 20:59:02 linux kernel: [810521.799078] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=3435 PROTO=96 
+Mar 15 20:59:02 linux kernel: [810521.801272] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=25731 PROTO=164 
+Mar 15 20:59:02 linux kernel: [810521.801322] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=24115 PROTO=27 
+Mar 15 20:59:02 linux kernel: [810521.890329] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=15588 PROTO=154 
+Mar 15 20:59:02 linux kernel: [810521.890378] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=4248 PROTO=56 
+Mar 15 20:59:02 linux kernel: [810521.892584] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=55414 PROTO=54 
+Mar 15 20:59:02 linux kernel: [810521.894760] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=7713 PROTO=5 
+Mar 15 20:59:02 linux kernel: [810521.896983] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=24560 PROTO=93 
+Mar 15 20:59:02 linux kernel: [810521.897030] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=45439 PROTO=150 
+Mar 15 20:59:02 linux kernel: [810521.899241] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=64578 PROTO=92 
+Mar 15 20:59:02 linux kernel: [810521.899288] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=55320 PROTO=152 
+Mar 15 20:59:02 linux kernel: [810521.901479] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=58462 PROTO=7 
+Mar 15 20:59:02 linux kernel: [810521.901527] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=10339 PROTO=80 
+Mar 15 20:59:02 linux kernel: [810521.990458] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=61421 PROTO=56 
+Mar 15 20:59:02 linux kernel: [810521.990506] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=11274 PROTO=154 
+Mar 15 20:59:02 linux kernel: [810521.992684] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=49212 PROTO=54 
+Mar 15 20:59:02 linux kernel: [810521.994855] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=37579 PROTO=5 
+Mar 15 20:59:02 linux kernel: [810521.997078] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=5086 PROTO=150 
+Mar 15 20:59:02 linux kernel: [810521.997126] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=40259 PROTO=93 
+Mar 15 20:59:02 linux kernel: [810521.999324] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=14487 PROTO=152 
+Mar 15 20:59:02 linux kernel: [810521.999372] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=61393 PROTO=92 
+Mar 15 20:59:02 linux kernel: [810522.001576] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=58792 PROTO=80 
+Mar 15 20:59:02 linux kernel: [810522.001626] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=16527 PROTO=7 
+Mar 15 20:59:02 linux kernel: [810522.090599] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=47128 PROTO=190 
+Mar 15 20:59:02 linux kernel: [810522.090648] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=4295 PROTO=137 
+Mar 15 20:59:02 linux kernel: [810522.092836] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=22290 PROTO=119 
+Mar 15 20:59:02 linux kernel: [810522.095012] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=10437 PROTO=41 
+Mar 15 20:59:02 linux kernel: [810522.097184] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=51316 PROTO=220 
+Mar 15 20:59:02 linux kernel: [810522.097232] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=7525 PROTO=209 
+Mar 15 20:59:02 linux kernel: [810522.099442] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=4166 PROTO=18 
+Mar 15 20:59:02 linux kernel: [810522.099490] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=38456 PROTO=234 
+Mar 15 20:59:02 linux kernel: [810522.101690] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=8681 PROTO=4 
+Mar 15 20:59:02 linux kernel: [810522.101738] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=52832 PROTO=104 
+Mar 15 20:59:03 linux kernel: [810522.190735] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=40228 PROTO=137 
+Mar 15 20:59:03 linux kernel: [810522.190784] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=9533 PROTO=190 
+Mar 15 20:59:03 linux kernel: [810522.192971] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=21554 PROTO=119 
+Mar 15 20:59:03 linux kernel: [810522.195148] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=13654 PROTO=41 
+Mar 15 20:59:03 linux kernel: [810522.197324] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=9782 PROTO=209 
+Mar 15 20:59:03 linux kernel: [810522.197372] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=12329 PROTO=220 
+Mar 15 20:59:03 linux kernel: [810522.199559] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=42134 PROTO=234 
+Mar 15 20:59:03 linux kernel: [810522.199607] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=48515 PROTO=18 
+Mar 15 20:59:03 linux kernel: [810522.201801] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=51155 PROTO=104 
+Mar 15 20:59:03 linux kernel: [810522.201849] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=27413 PROTO=4 
+Mar 15 20:59:03 linux kernel: [810522.290876] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=24781 PROTO=71 
+Mar 15 20:59:03 linux kernel: [810522.290937] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=34350 PROTO=219 
+Mar 15 20:59:03 linux kernel: [810522.293182] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=41423 PROTO=239 
+Mar 15 20:59:03 linux kernel: [810522.295362] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=42813 PROTO=AH INCOMPLETE [0 bytes] 
+Mar 15 20:59:03 linux kernel: [810522.297541] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=13740 PROTO=247 
+Mar 15 20:59:03 linux kernel: [810522.297589] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=53790 PROTO=26 
+Mar 15 20:59:03 linux kernel: [810522.299786] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=43007 PROTO=161 
+Mar 15 20:59:03 linux kernel: [810522.299834] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=40950 PROTO=76 
+Mar 15 20:59:03 linux kernel: [810522.302046] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=41871 PROTO=91 
+Mar 15 20:59:03 linux kernel: [810522.302093] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=40847 PROTO=49 
+Mar 15 20:59:03 linux kernel: [810522.391018] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=65470 PROTO=219 
+Mar 15 20:59:03 linux kernel: [810522.391066] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=14654 PROTO=71 
+Mar 15 20:59:03 linux kernel: [810522.393282] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=28948 PROTO=239 
+Mar 15 20:59:03 linux kernel: [810522.395470] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=64699 PROTO=AH INCOMPLETE [0 bytes] 
+Mar 15 20:59:03 linux kernel: [810522.397653] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=34069 PROTO=26 
+Mar 15 20:59:03 linux kernel: [810522.397700] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=54361 PROTO=247 
+Mar 15 20:59:03 linux kernel: [810522.399904] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=1366 PROTO=76 
+Mar 15 20:59:03 linux kernel: [810522.399952] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=44846 PROTO=161 
+Mar 15 20:59:03 linux kernel: [810522.402170] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=60802 PROTO=49 
+Mar 15 20:59:03 linux kernel: [810522.402219] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=55700 PROTO=91 
+Mar 15 20:59:03 linux kernel: [810522.491157] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=27784 PROTO=156 
+Mar 15 20:59:03 linux kernel: [810522.491206] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=8306 PROTO=55 
+Mar 15 20:59:03 linux kernel: [810522.493423] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=46920 PROTO=116 
+Mar 15 20:59:03 linux kernel: [810522.495622] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=47126 PROTO=19 
+Mar 15 20:59:03 linux kernel: [810522.497811] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=18204 PROTO=226 
+Mar 15 20:59:03 linux kernel: [810522.497859] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=41626 PROTO=221 
+Mar 15 20:59:03 linux kernel: [810522.500109] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=911 PROTO=245 
+Mar 15 20:59:03 linux kernel: [810522.500157] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=28219 PROTO=222 
+Mar 15 20:59:03 linux kernel: [810522.502351] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=42704 PROTO=255 
+Mar 15 20:59:03 linux kernel: [810522.502399] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=23133 PROTO=171 
+Mar 15 20:59:03 linux kernel: [810522.591288] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=35442 PROTO=55 
+Mar 15 20:59:03 linux kernel: [810522.591336] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=17034 PROTO=156 
+Mar 15 20:59:03 linux kernel: [810522.593535] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=16832 PROTO=116 
+Mar 15 20:59:03 linux kernel: [810522.595716] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=10284 PROTO=19 
+Mar 15 20:59:03 linux kernel: [810522.597906] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=60447 PROTO=221 
+Mar 15 20:59:03 linux kernel: [810522.597954] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=39825 PROTO=226 
+Mar 15 20:59:03 linux kernel: [810522.600164] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=378 PROTO=222 
+Mar 15 20:59:03 linux kernel: [810522.600212] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=25970 PROTO=245 
+Mar 15 20:59:03 linux kernel: [810522.602446] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=33176 PROTO=171 
+Mar 15 20:59:03 linux kernel: [810522.602494] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=11450 PROTO=255 
+Mar 15 20:59:03 linux kernel: [810522.691502] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=17121 PROTO=95 
+Mar 15 20:59:03 linux kernel: [810522.691550] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=49940 PROTO=3 
+Mar 15 20:59:03 linux kernel: [810522.693779] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=58577 PROTO=182 
+Mar 15 20:59:03 linux kernel: [810522.695967] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=11256 PROTO=111 
+Mar 15 20:59:03 linux kernel: [810522.698162] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=59126 PROTO=241 
+Mar 15 20:59:03 linux kernel: [810522.698209] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=21287 PROTO=133 
+Mar 15 20:59:03 linux kernel: [810522.700430] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=30012 PROTO=87 
+Mar 15 20:59:03 linux kernel: [810522.700477] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=28923 PROTO=228 
+Mar 15 20:59:03 linux kernel: [810522.702694] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=61368 PROTO=142 
+Mar 15 20:59:03 linux kernel: [810522.702743] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=16450 PROTO=59 
+Mar 15 20:59:03 linux kernel: [810522.791614] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=61551 PROTO=3 
+Mar 15 20:59:03 linux kernel: [810522.791661] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=50725 PROTO=95 
+Mar 15 20:59:03 linux kernel: [810522.793868] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=44110 PROTO=182 
+Mar 15 20:59:03 linux kernel: [810522.796067] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=48265 PROTO=111 
+Mar 15 20:59:03 linux kernel: [810522.798261] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=55864 PROTO=133 
+Mar 15 20:59:03 linux kernel: [810522.798309] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=40482 PROTO=241 
+Mar 15 20:59:03 linux kernel: [810522.800520] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=55632 PROTO=228 
+Mar 15 20:59:03 linux kernel: [810522.800568] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=6725 PROTO=87 
+Mar 15 20:59:03 linux kernel: [810522.802801] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=15112 PROTO=59 
+Mar 15 20:59:03 linux kernel: [810522.802850] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=44268 PROTO=142 
+Mar 15 20:59:03 linux kernel: [810522.891772] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=34710 PROTO=69 
+Mar 15 20:59:03 linux kernel: [810522.891821] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=28 TOS=0x00 PREC=0x00 TTL=58 ID=21782 PROTO=2 
+Mar 15 20:59:03 linux kernel: [810522.894043] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=17150 PROTO=62 
+Mar 15 20:59:03 linux kernel: [810522.896237] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=23976 PROTO=231 
+Mar 15 20:59:03 linux kernel: [810522.898478] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=39669 PROTO=155 
+Mar 15 20:59:03 linux kernel: [810522.898526] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=60670 PROTO=208 
+Mar 15 20:59:03 linux kernel: [810522.900740] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=1860 PROTO=235 
+Mar 15 20:59:03 linux kernel: [810522.900791] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=40199 PROTO=144 
+Mar 15 20:59:03 linux kernel: [810522.903034] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=18084 PROTO=183 
+Mar 15 20:59:03 linux kernel: [810522.903082] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=59527 PROTO=230 
+Mar 15 20:59:03 linux kernel: [810522.992044] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=28 TOS=0x00 PREC=0x00 TTL=58 ID=43820 PROTO=2 
+Mar 15 20:59:03 linux kernel: [810522.992092] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=37920 PROTO=69 
+Mar 15 20:59:03 linux kernel: [810522.994316] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=60091 PROTO=62 
+Mar 15 20:59:03 linux kernel: [810522.996504] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=36827 PROTO=231 
+Mar 15 20:59:03 linux kernel: [810522.998686] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=49500 PROTO=208 
+Mar 15 20:59:03 linux kernel: [810522.998734] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=54322 PROTO=155 
+Mar 15 20:59:03 linux kernel: [810523.000963] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=46797 PROTO=144 
+Mar 15 20:59:03 linux kernel: [810523.001012] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=65109 PROTO=235 
+Mar 15 20:59:03 linux kernel: [810523.003268] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=15211 PROTO=230 
+Mar 15 20:59:03 linux kernel: [810523.003317] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=48515 PROTO=183 
+Mar 15 20:59:03 linux kernel: [810523.092192] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=28949 PROTO=134 
+Mar 15 20:59:03 linux kernel: [810523.092240] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=59552 PROTO=192 
+Mar 15 20:59:03 linux kernel: [810523.094462] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=57448 PROTO=202 
+Mar 15 20:59:03 linux kernel: [810523.096650] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=63352 PROTO=98 
+Mar 15 20:59:03 linux kernel: [810523.098840] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=61502 PROTO=184 
+Mar 15 20:59:03 linux kernel: [810523.098888] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=16678 PROTO=139 
+Mar 15 20:59:03 linux kernel: [810523.101127] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=15739 PROTO=110 
+Mar 15 20:59:03 linux kernel: [810523.101175] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=15667 PROTO=149 
+Mar 15 20:59:03 linux kernel: [810523.103385] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=7529 PROTO=249 
+Mar 15 20:59:03 linux kernel: [810523.103434] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=36228 PROTO=21 
+Mar 15 20:59:04 linux kernel: [810523.192485] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=43656 PROTO=192 
+Mar 15 20:59:04 linux kernel: [810523.192534] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=5080 PROTO=134 
+Mar 15 20:59:04 linux kernel: [810523.194736] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=38619 PROTO=202 
+Mar 15 20:59:04 linux kernel: [810523.196906] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=19999 PROTO=98 
+Mar 15 20:59:04 linux kernel: [810523.199292] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=42183 PROTO=139 
+Mar 15 20:59:04 linux kernel: [810523.199340] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=29596 PROTO=184 
+Mar 15 20:59:04 linux kernel: [810523.201603] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=11817 PROTO=149 
+Mar 15 20:59:04 linux kernel: [810523.201652] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=23166 PROTO=110 
+Mar 15 20:59:04 linux kernel: [810523.203859] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=33899 PROTO=21 
+Mar 15 20:59:04 linux kernel: [810523.203907] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=19434 PROTO=249 
+Mar 15 20:59:04 linux kernel: [810523.292625] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=2924 PROTO=86 
+Mar 15 20:59:04 linux kernel: [810523.294833] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=51679 PROTO=158 
+Mar 15 20:59:04 linux kernel: [810523.294884] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=60846 PROTO=153 
+Mar 15 20:59:04 linux kernel: [810523.297068] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=28825 PROTO=163 
+Mar 15 20:59:04 linux kernel: [810523.299419] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=62081 PROTO=218 
+Mar 15 20:59:04 linux kernel: [810523.299468] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=55152 PROTO=170 
+Mar 15 20:59:04 linux kernel: [810523.301667] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=51136 PROTO=186 
+Mar 15 20:59:04 linux kernel: [810523.303829] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=42071 PROTO=65 
+Mar 15 20:59:04 linux kernel: [810523.306040] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=33484 PROTO=89 
+Mar 15 20:59:04 linux kernel: [810523.306092] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=16375 PROTO=232 
+Mar 15 20:59:04 linux kernel: [810523.392783] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=56784 PROTO=86 
+Mar 15 20:59:04 linux kernel: [810523.394942] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=61098 PROTO=153 
+Mar 15 20:59:04 linux kernel: [810523.394993] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=60413 PROTO=158 
+Mar 15 20:59:04 linux kernel: [810523.397153] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=20938 PROTO=163 
+Mar 15 20:59:04 linux kernel: [810523.399550] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=35953 PROTO=170 
+Mar 15 20:59:04 linux kernel: [810523.399598] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=64125 PROTO=218 
+Mar 15 20:59:04 linux kernel: [810523.401776] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=43554 PROTO=186 
+Mar 15 20:59:04 linux kernel: [810523.403973] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=42619 PROTO=65 
+Mar 15 20:59:04 linux kernel: [810523.406133] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=40177 PROTO=232 
+Mar 15 20:59:04 linux kernel: [810523.406180] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=12631 PROTO=89 
+Mar 15 20:59:04 linux kernel: [810523.492928] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=39487 PROTO=201 
+Mar 15 20:59:04 linux kernel: [810523.495043] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=45271 PROTO=67 
+Mar 15 20:59:04 linux kernel: [810523.495091] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=38620 PROTO=24 
+Mar 15 20:59:04 linux kernel: [810523.497221] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=61156 PROTO=100 
+Mar 15 20:59:04 linux kernel: [810523.499599] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=30347 PROTO=167 
+Mar 15 20:59:04 linux kernel: [810523.499647] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=1823 PROTO=39 
+Mar 15 20:59:04 linux kernel: [810523.506354] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=10966 PROTO=236 
+Mar 15 20:59:04 linux kernel: [810523.506402] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=17023 PROTO=242 
+Mar 15 20:59:04 linux kernel: [810523.506442] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=6487 PROTO=166 
+Mar 15 20:59:04 linux kernel: [810523.506481] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=27713 PROTO=ESP INCOMPLETE [0 bytes] 
+Mar 15 20:59:04 linux kernel: [810523.506522] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=64927 PROTO=130 
+Mar 15 20:59:04 linux kernel: [810523.506561] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=53185 PROTO=120 
+Mar 15 20:59:04 linux kernel: [810523.506600] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=50607 PROTO=107 
+Mar 15 20:59:04 linux kernel: [810523.506637] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=41959 PROTO=57 
+Mar 15 20:59:04 linux kernel: [810523.506675] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=12945 PROTO=35 
+Mar 15 20:59:04 linux kernel: [810523.506713] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=35305 PROTO=103 
+Mar 15 20:59:04 linux kernel: [810523.506752] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=32447 PROTO=148 
+Mar 15 20:59:04 linux kernel: [810523.506791] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=28151 PROTO=210 
+Mar 15 20:59:04 linux kernel: [810523.506828] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=14779 PROTO=145 
+Mar 15 20:59:04 linux kernel: [810523.506875] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=1428 PROTO=16 
+Mar 15 20:59:04 linux kernel: [810523.506914] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=51424 PROTO=46 
+Mar 15 20:59:04 linux kernel: [810523.506952] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=30798 PROTO=82 
+Mar 15 20:59:04 linux kernel: [810523.506991] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=12916 PROTO=22 
+Mar 15 20:59:04 linux kernel: [810523.507035] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=21054 PROTO=200 
+Mar 15 20:59:04 linux kernel: [810523.507074] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=56441 PROTO=193 
+Mar 15 20:59:04 linux kernel: [810523.507112] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=24983 PROTO=105 
+Mar 15 20:59:04 linux kernel: [810523.507166] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=41989 PROTO=246 
+Mar 15 20:59:04 linux kernel: [810523.507204] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=26018 PROTO=151 
+Mar 15 20:59:04 linux kernel: [810523.507260] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=52842 PROTO=124 
+Mar 15 20:59:04 linux kernel: [810523.507311] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=13409 PROTO=244 
+Mar 15 20:59:04 linux kernel: [810523.507349] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=16837 PROTO=248 
+Mar 15 20:59:04 linux kernel: [810523.507386] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=15110 PROTO=165 
+Mar 15 20:59:04 linux kernel: [810523.507432] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=60251 PROTO=197 
+Mar 15 20:59:04 linux kernel: [810523.507497] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=27297 PROTO=74 
+Mar 15 20:59:04 linux kernel: [810523.507536] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=48031 PROTO=58 
+Mar 15 20:59:04 linux kernel: [810523.507574] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=23412 PROTO=212 
+Mar 15 20:59:04 linux kernel: [810523.507612] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=32667 PROTO=207 
+Mar 15 20:59:04 linux kernel: [810523.507651] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=39457 PROTO=169 
+Mar 15 20:59:04 linux kernel: [810523.507689] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=60219 PROTO=102 
+Mar 15 20:59:04 linux kernel: [810523.507727] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=27474 PROTO=254 
+Mar 15 20:59:04 linux kernel: [810523.507766] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=43606 PROTO=146 
+Mar 15 20:59:04 linux kernel: [810523.507804] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=59358 PROTO=205 
+Mar 15 20:59:04 linux kernel: [810523.507843] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=49861 PROTO=198 
+Mar 15 20:59:04 linux kernel: [810523.507888] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=30372 PROTO=206 
+Mar 15 20:59:04 linux kernel: [810523.507927] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=1750 PROTO=250 
+Mar 15 20:59:04 linux kernel: [810523.507965] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=29199 PROTO=79 
+Mar 15 20:59:04 linux kernel: [810523.508003] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=32054 PROTO=225 
+Mar 15 20:59:04 linux kernel: [810523.508042] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=6029 PROTO=172 
+Mar 15 20:59:04 linux kernel: [810523.508086] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=15259 PROTO=TCP SPT=39480 DPT=39480 WINDOW=1024 RES=0x00 ACK URGP=0 
+Mar 15 20:59:04 linux kernel: [810523.508132] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=50338 PROTO=101 
+Mar 15 20:59:04 linux kernel: [810523.508170] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=57119 PROTO=204 
+Mar 15 20:59:04 linux kernel: [810523.508209] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=20664 PROTO=25 
+Mar 15 20:59:04 linux kernel: [810523.508247] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=28551 PROTO=233 
+Mar 15 20:59:04 linux kernel: [810523.508286] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=19363 PROTO=138 
+Mar 15 20:59:04 linux kernel: [810523.508324] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=50169 PROTO=223 
+Mar 15 20:59:04 linux kernel: [810523.508362] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=60895 PROTO=117 
+Mar 15 20:59:04 linux kernel: [810523.510552] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=64234 PROTO=44 
+Mar 15 20:59:04 linux kernel: [810523.510601] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=25228 PROTO=211 
+Mar 15 20:59:04 linux kernel: [810523.510640] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=5647 PROTO=106 
+Mar 15 20:59:04 linux kernel: [810523.510678] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=61614 PROTO=77 
+Mar 15 20:59:04 linux kernel: [810523.593092] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=60859 PROTO=201 
+Mar 15 20:59:04 linux kernel: [810523.595231] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=40570 PROTO=24 
+Mar 15 20:59:04 linux kernel: [810523.595515] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=40255 PROTO=67 
+Mar 15 20:59:04 linux kernel: [810523.597655] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=1370 PROTO=100 
+Mar 15 20:59:04 linux kernel: [810523.599791] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=10687 PROTO=39 
+Mar 15 20:59:04 linux kernel: [810523.599838] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=54976 PROTO=167 
+Mar 15 20:59:04 linux kernel: [810523.606474] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=49170 PROTO=242 
+Mar 15 20:59:04 linux kernel: [810523.606523] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=34446 PROTO=236 
+Mar 15 20:59:04 linux kernel: [810523.608669] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=23785 PROTO=117 
+Mar 15 20:59:04 linux kernel: [810523.608716] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=6739 PROTO=223 
+Mar 15 20:59:04 linux kernel: [810523.608756] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=36017 PROTO=138 
+Mar 15 20:59:04 linux kernel: [810523.608794] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=28699 PROTO=233 
+Mar 15 20:59:04 linux kernel: [810523.608832] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=38853 PROTO=25 
+Mar 15 20:59:04 linux kernel: [810523.608869] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=14187 PROTO=204 
+Mar 15 20:59:04 linux kernel: [810523.608907] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=1387 PROTO=101 
+Mar 15 20:59:04 linux kernel: [810523.608951] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=4967 PROTO=TCP SPT=39481 DPT=39480 WINDOW=2048 RES=0x00 ACK URGP=0 
+Mar 15 20:59:04 linux kernel: [810523.608997] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=2319 PROTO=172 
+Mar 15 20:59:04 linux kernel: [810523.609036] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=51557 PROTO=225 
+Mar 15 20:59:04 linux kernel: [810523.609118] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=55045 PROTO=79 
+Mar 15 20:59:04 linux kernel: [810523.609158] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=5664 PROTO=250 
+Mar 15 20:59:04 linux kernel: [810523.609196] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=34944 PROTO=206 
+Mar 15 20:59:04 linux kernel: [810523.609235] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=8051 PROTO=198 
+Mar 15 20:59:04 linux kernel: [810523.609272] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=51911 PROTO=205 
+Mar 15 20:59:04 linux kernel: [810523.609330] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=3310 PROTO=146 
+Mar 15 20:59:04 linux kernel: [810523.609369] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=16100 PROTO=254 
+Mar 15 20:59:04 linux kernel: [810523.609416] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=38368 PROTO=102 
+Mar 15 20:59:04 linux kernel: [810523.609462] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=31503 PROTO=169 
+Mar 15 20:59:04 linux kernel: [810523.609508] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=39241 PROTO=207 
+Mar 15 20:59:04 linux kernel: [810523.609554] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=22321 PROTO=212 
+Mar 15 20:59:04 linux kernel: [810523.609600] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=32426 PROTO=58 
+Mar 15 20:59:04 linux kernel: [810523.609646] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=20497 PROTO=74 
+Mar 15 20:59:04 linux kernel: [810523.609693] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=3611 PROTO=197 
+Mar 15 20:59:04 linux kernel: [810523.609739] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=3409 PROTO=165 
+Mar 15 20:59:04 linux kernel: [810523.609785] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=28216 PROTO=248 
+Mar 15 20:59:04 linux kernel: [810523.609832] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=45529 PROTO=244 
+Mar 15 20:59:04 linux kernel: [810523.609878] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=33173 PROTO=124 
+Mar 15 20:59:04 linux kernel: [810523.609917] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=20605 PROTO=151 
+Mar 15 20:59:04 linux kernel: [810523.609969] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=8878 PROTO=246 
+Mar 15 20:59:04 linux kernel: [810523.610048] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=13835 PROTO=105 
+Mar 15 20:59:04 linux kernel: [810523.610149] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=41105 PROTO=193 
+Mar 15 20:59:04 linux kernel: [810523.610244] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=9084 PROTO=200 
+Mar 15 20:59:04 linux kernel: [810523.610338] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=15424 PROTO=22 
+Mar 15 20:59:04 linux kernel: [810523.610433] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=65087 PROTO=82 
+Mar 15 20:59:04 linux kernel: [810523.610528] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=8384 PROTO=46 
+Mar 15 20:59:04 linux kernel: [810523.610623] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=49620 PROTO=16 
+Mar 15 20:59:04 linux kernel: [810523.610717] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=32410 PROTO=145 
+Mar 15 20:59:04 linux kernel: [810523.610812] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=59741 PROTO=210 
+Mar 15 20:59:04 linux kernel: [810523.610906] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=8157 PROTO=148 
+Mar 15 20:59:04 linux kernel: [810523.610999] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=1991 PROTO=103 
+Mar 15 20:59:04 linux kernel: [810523.611091] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=52 ID=49225 PROTO=35 
+Mar 15 20:59:04 linux kernel: [810523.611183] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=59913 PROTO=57 
+Mar 15 20:59:04 linux kernel: [810523.611269] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=64466 PROTO=107 
+Mar 15 20:59:04 linux kernel: [810523.611316] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=17992 PROTO=120 
+Mar 15 20:59:04 linux kernel: [810523.611408] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=41 ID=25047 PROTO=130 
+Mar 15 20:59:04 linux kernel: [810523.611500] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=19181 PROTO=ESP INCOMPLETE [0 bytes] 
+Mar 15 20:59:04 linux kernel: [810523.611597] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=35588 PROTO=166 
+Mar 15 20:59:04 linux kernel: [810523.613023] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=36346 PROTO=77 
+Mar 15 20:59:04 linux kernel: [810523.613065] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=51 ID=63996 PROTO=106 
+Mar 15 20:59:04 linux kernel: [810523.613121] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=53 ID=5518 PROTO=211 
+Mar 15 20:59:04 linux kernel: [810523.613162] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=50872 PROTO=44 
+Mar 15 20:59:04 linux kernel: [810523.693255] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=23946 PROTO=238 
+Mar 15 20:59:04 linux kernel: [810523.695412] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=54 ID=53236 PROTO=194 
+Mar 15 20:59:04 linux kernel: [810523.695461] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=9658 PROTO=252 
+Mar 15 20:59:04 linux kernel: [810523.697761] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=33512 PROTO=60 
+Mar 15 20:59:04 linux kernel: [810523.699915] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=56 ID=363 PROTO=20 
+Mar 15 20:59:04 linux kernel: [810523.699963] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=39 ID=57403 PROTO=129 
+Mar 15 20:59:04 linux kernel: [810523.706608] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=37 ID=47530 PROTO=36 
+Mar 15 20:59:04 linux kernel: [810523.706656] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=58224 PROTO=147 
+Mar 15 20:59:04 linux kernel: [810523.708820] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=48011 PROTO=143 
+Mar 15 20:59:04 linux kernel: [810523.708868] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=46 ID=56394 PROTO=97 
+Mar 15 20:59:04 linux kernel: [810523.708907] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=47 ID=55795 PROTO=114 
+Mar 15 20:59:04 linux kernel: [810523.711107] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=50 ID=32977 PROTO=29 
+Mar 15 20:59:04 linux kernel: [810523.711155] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=58 ID=16382 PROTO=28 
+Mar 15 20:59:04 linux kernel: [810523.711194] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=63775 PROTO=42 
+Mar 15 20:59:04 linux kernel: [810523.711278] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=45 ID=18302 PROTO=10 
+Mar 15 20:59:04 linux kernel: [810523.795259] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=1869 PROTO=238 
+Mar 15 20:59:04 linux kernel: [810523.797407] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=55 ID=3446 PROTO=252 
+Mar 15 20:59:04 linux kernel: [810523.797455] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=2796 PROTO=194 
+Mar 15 20:59:04 linux kernel: [810523.799601] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=40 ID=3422 PROTO=60 
+Mar 15 20:59:04 linux kernel: [810523.801749] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=36719 PROTO=129 
+Mar 15 20:59:04 linux kernel: [810523.801798] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=57 ID=10191 PROTO=20 
+Mar 15 20:59:04 linux kernel: [810523.808167] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=42 ID=45074 PROTO=147 
+Mar 15 20:59:04 linux kernel: [810523.808214] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=7706 PROTO=36 
+Mar 15 20:59:04 linux kernel: [810523.810346] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=38 ID=49041 PROTO=114 
+Mar 15 20:59:04 linux kernel: [810523.810394] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=43 ID=13790 PROTO=97 
+Mar 15 20:59:04 linux kernel: [810523.810433] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=48158 PROTO=143 
+Mar 15 20:59:04 linux kernel: [810523.812648] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=44 ID=6267 PROTO=10 
+Mar 15 20:59:04 linux kernel: [810523.812697] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=48 ID=11094 PROTO=42 
+Mar 15 20:59:04 linux kernel: [810523.812736] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=49 ID=45791 PROTO=28 
+Mar 15 20:59:04 linux kernel: [810523.812773] DROP IN=eth0 OUT= MAC=23:87:fc:c6:24:58:00:21:3f:98:99:78:09:00 SRC=192.168.10.55 DST=192.168.10.1 LEN=20 TOS=0x00 PREC=0x00 TTL=59 ID=3052 PROTO=29