I get the following in my VPS logs
Aug 11 11:29:22 sv1254 kernel: Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:f6:f3:49:7e:0a:54:08:00 SRC=126.96.36.199 DST=255.255.255.255 LEN=131 TOS=0x00 PREC=$ PREC=0x00 TTL=128 ID=6067 PROTO=UDP SPT=17500 DPT=17500 LEN=111 Aug 11 11:29:22 sv1254 kernel: Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:f6:f3:49:7e:0a:54:08:00 SRC=188.8.131.52 DST=184.108.40.206 LEN=131 TOS=0x00 PREC=$ PREC=0x00 TTL=128 ID=6068 PROTO=UDP SPT=17500 DPT=17500 LEN=111
Neither the SRC nor the DST are mine. After googling around I found this explanation here and came to know that port 17500 has to do with dropbox’s broadcasting and that I can get rid of it by disabling LANSync in the application or uninstalling it altogether. Still, I’m getting the error in my log file. Any ideas on this would be appreciated.
You can’t “get rid of” these so easily. You’re seeing this because other customers of your VPS provider are running Dropbox LAN sync.
Personally I just drop traffic from other nodes in the same subnet without bothering to log it. For example, if your VPS’s IP address is 203.0.113.148 and prefix 24:
-A INPUT -s 203.0.113.0/24 ! -d 203.0.113.148 -m comment --comment "Noisy neighbors" -j DROP
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.