• Some users have recently had their accounts hijacked. It seems that the now defunct EVGA forums might have compromised your password there and seems many are using the same PW here. We would suggest you UPDATE YOUR PASSWORD and TURN ON 2FA for your account here to further secure it. None of the compromised accounts had 2FA turned on.
    Once you have enabled 2FA, your account will be updated soon to show a badge, letting other members know that you use 2FA to protect your account. This should be beneficial for everyone that uses FSFT.

kernel intrusion detected alert

D

dopple

Gawd
Joined
Oct 5, 2011
Messages
685
My router is giving out the following alert in system log. whats this about?


kernel: Intrusion -> IN=ppp0.1 OUT= MAC= SRC=222.xxx.21.218 DST=59.xxx.100.xx LEN=40 TOS=0x00 PREC=0x00 TTL=108 ID=256 PROTO=TCP SPT=77 DPT=9064 WINDOW=16384 RES=0x00 SYN URGP=0 MARK=0x8000000
 
SRC=222.xxx.21.218 DST=59.xxx.100.xx ... PROTO=TCP SPT=77 DPT=9064
Click to expand...

D-link router? Looks to be someone scanning your router. Notice the source and destination IP's and ports.
 
Unplug from the internet?

If you are connected to a world wide network, you are going to get scans. The important thing is to make sure the firewall is up and that you have no internet-facing open ports.

Run an internet firewall test (Shields Up) and if you pass, you should be ok.
 
djflow195 said:
Unplug from the internet?

If you are connected to a world wide network, you are going to get scans. The important thing is to make sure the firewall is up and that you have no internet-facing open ports.

Run an internet firewall test (Shields Up) and if you pass, you should be ok.
Click to expand...

its passing. thanks for the link. its a new router, hadn't seen these entries in my previous router..
 
You must log in or register to reply here.
Back
Top