i got hit a few times from

so i do a whois and find out more korea fun.

i then look at my iptables entries for korea.

i have the following:

(root on pts/3@yyy.net) (/etc/sysconfig)
> iptables -nvL | grep 211 | grep 104
0 0 DROP all -- * *

now a will kill all up to

so 211.108 should easily be in that range.

so HOW did i get any attacks at all?