tcpdump not port 22
tcpdump ip host 172.31.0.222 and ! 172.31.0.223
tcpdump host 110.34.211.18
iptables -A INPUT -s 110.34.211.18 -j DROP
iptables -A OUTPUT -d 110.34.211.18 -j DROP
iptable -I INPUT -p icmp -j REJECT
[root@imrlocalweb ~]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
DROP all -- 110.34.211.18 anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
DROP all -- anywhere 110.34.211.18
--------------
[root@web ~]# ps -ef|grep jwswtr.rd
root 12752 1 0 Mar13 ? 00:00:00 /lib/jwswtr.rd
root 28804 12752 0 09:31 ? 00:00:00 /lib/jwswtr.rd
root 28841 28373 0 09:37 pts/3 00:00:00 grep jwswtr.rd
[root@web ~]# lsof -i:12752
[root@web ~]# lsof -p 12752
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
jwswtr.rd 12752 root cwd DIR 253,0 4096 32834101 /jboss-4.0.5.GA/bin
jwswtr.rd 12752 root rtd DIR 253,0 4096 2 /
jwswtr.rd 12752 root txt REG 253,0 1105372 65602318 /lib/jwswtr.rd
jwswtr.rd 12752 root 0r FIFO 0,6 0t0 45536 pipe
jwswtr.rd 12752 root 1w FIFO 0,6 0t0 45537 pipe
jwswtr.rd 12752 root 2w FIFO 0,6 0t0 45538 pipe
jwswtr.rd 12752 root 3r REG 253,0 0 65602482 /lib/0 (deleted)
[root@web ~]#
[root@web ~]# lsof -p 28804
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
jwswtr.rd 28804 root cwd DIR 253,0 4096 32834101 /jboss-4.0.5.GA/bin
jwswtr.rd 28804 root rtd DIR 253,0 4096 2 /
jwswtr.rd 28804 root txt REG 253,0 1105372 65602318 /lib/jwswtr.rd
jwswtr.rd 28804 root 0r FIFO 0,6 0t0 45536 pipe
jwswtr.rd 28804 root 1w FIFO 0,6 0t0 45537 pipe
jwswtr.rd 28804 root 2w FIFO 0,6 0t0 45538 pipe
jwswtr.rd 28804 root 3r REG 253,0 0 65602482 /lib/0 (deleted)
jwswtr.rd 28804 root 4u sock 0,5 0t0 141009 can't identify protocol
jwswtr.rd 28804 root 5u IPv4 141012 0t0 TCP 110.38.61.51:29197->110.34.211.18:afs3-callback (ESTABLISHED)
jwswtr.rd 28804 root 6u raw 0t0 141017 00000000:0011->00000000:0000 st=07
[root@web ~]#
