ardagent.app connecting to 123.123.123.123 port 3283 via UDP
I have a MacBook Pro (Retina, 15-inch, Late 2013) running 10.10.5 (14F1605). I also run a DNS server on my network on a Mac mini Server (Mid 2011) also running 10.10.5 (14F1605). I also have Little Snitch Version 3.6.2 running, and have Apple Remote Desktop Version 3.8 (380A95)
My macbook was not able to connect to the internet. The ping utility couldn't get server names resolved, trying to ping my Mac Mini timed out. I automatically fired up Apple Remote Desktop to try and see what was happening to the Mac Mini (I don't know why I thought that would help given that I could not ping the Mini). Then something curious happened:
1. Little Snitch reported that ARDAgent.app was attempting to connect to 123.123.123.123 on port 3283 via UDP.
2. Allowing the connection (WHAT WAS I THINKING??? I was very tired) fixed my connection issues.
I decided to check where IP 123.123.123.123 is located, and was a bit worried that it is part of the block of IP's allocated to:
inetnum: 123.112.0.0 - 123.127.255.255
netname: UNICOM-BJ
descr: China Unicom Beijing province network
descr: China Unicom
country: CN
I have never been to China!!
Why is ARDAgent phoning home to the China Unicom network?????
MacBook Pro with Retina display, OS X Yosemite (10.10.5), ARD 3.8