I have a freshly-installed Debian Squeeze machine in a datacenter. iptables is set to drop and log any non-ssh packets.
Mark Janssen [ Editor ]
Best method is to install a network-sniffer, use either tcpdump or wireshark. Have a look at the traffic coming in, possibly filtering out the traffic you know about until you get to the traffic you are looking for.