Hello everyone.
Over the past 6 weeks or so, i have noticed that the intrusion detection on my 546 has "protected intrusions", on a number of occasions.
I have scoured cyber land for all things pertaining to the specific named intrusions, and sort of understand things on an extremely basic level!
Could anyone help to explain things a little bit more. The stats as of today are:
Intrusion Name Count
fragment_sweep 3
zero-length_fragment_size 0
small_fragment_size 0
fragment_size_overrun 0
fragment_overlap 0
fragment_out-of-order 207
ip_protocol_scan 0
tcp_port_scan 0
tcp_syn_scan 0
stealth_tcp_null_scan 0
stealth_tcp_fin_scan 0
stealth_tcp_xmas_scan 0
stealth_tcp_full_xmas_scan 0
stealth_tcp_vecna_scan 0
stealth_tcp_syn-fin_scan 0
udp_port_scan 0
ping_sweep_scan 0
tcp_syn_flood 0
udp_flood 1
ping_flood 0
icmp_unreachable_storm 0
smurf_broadcast_attack 0
smurf_storm_attack 0
fraggle_broadcast_attack 0
fraggle_storm_attack 0
land_attack 0
tcp_null_port 0
tcp_data_on_syn_segment 0
tcp_invalid_urgent_offset 0
udp_null_port 0
icmp_type_unknown 0
icmp_code_unknown 0
ip_zero_payload 0
tcp_rate_limiting 0
udp_rate_limiting 0
icmp_rate_limiting 0
ip_rate_limiting 0
`````````````````````````````
Any help would be greatly appreciated.
Mog



Print Thread
