On 2018-02-28 01:47 PM, Chris Cormack wrote:
> That will work, however unless you have configured your memcached server to listen on an external IP it will only be listening on localhost. It's worth checking both though.
and/or block at border -- there's an up-tick in attempts. In the last
Feb 28 14:05:20 Wed Feb 28 14:05:11 2018 router2 System Log: Blocked
incoming UDP packet from 188.8.131.52:52499 to 70.52.***.***:11211
Feb 28 14:07:06 Wed Feb 28 14:06:59 2018 router2 System Log: Blocked
incoming UDP packet from 184.108.40.206:37750 to 70.52.***.***:11211
And it is, but testing from outside: nmap *TARGET* -p 11211 -sU -sS
in my case (a Koha fresh install with memcached) ports are closed/filtered,
seems secure because of the firewall and this line on default
# Specify which IP address to listen on. The default is to listen on all IP
# This parameter is one of the only security measures that memcached has,
so make sure
# it's listening on a firewalled interface.