Any idea what those lines in /var/log/messages mean?Packet log: input DENY eth0 PROTO=6 207.218.223.135:4193 216.40.250.13:23 L=60 S=0x00 I=5157 F=0x4000 T=62 SYN (#42)The server is regularly hanging-up, could that be the reason?

That's just a log showing that the IP 207.218.223.135 is trying to connect to the IP 216.40.250.13 (on your sytem) to port 23 (telnet) and is blocked from connecting via IPchains (I assume Ipchains, which is a firewall rule. If they ar2 hitting your server a lot, they aren't getting in, but it shows that it's good that you've blocked them. Likely they aren't the only people hitting your system trying to break in, so those other IP's could be causing a load, or it could be something else. You can always report them to their provider and give them the logs showing that the IP is trying to hit your server 100 times a second, or however often they are hitting you.

As far as I know, this IP belongs to Rackshack too. Don't have time to check, but I guess they're monitoring services on your server. ;)

Ales

Originally posted by Ales
As far as I know, this IP belongs to RackshackYes, got e-mail from them with confirmation that this is their tech's IP. You probably right, it is a telnet monitoring service. Thanks!

I assumed this was a log full of these, as in 10 or more per second. It's good that you're not being attacked though.