Re: Security message from router meaning?
Hi Ray, I am not an expert in this field, but letters DOS usually stand for denial of service attack. China Unicom is the second or third largest service provider in China, so one of their millions of subscribers appears to have launched a DOS attack on your IP address, the large numbers, 8 thousand etc, may be the number of packets received from that address. Another line appears to suggest they did a port scan of your computer, which is to say they looked sequentially at all the socket addresses (80 for instance is the port number for web servers) to see if any were not secured. They can use that information to gain access to your computer should a port be open. You might want to pass the information on to your ISP, but I doubt they can or will do anything about it. Your best defense is to keep on using a NAT router and to run Apple's firewall. Your ISP will give you some level of protection as well. Cheers, Carlo Sent from my iPad On 06/08/2011, at 13:37, Ray Forma r...@smartchat.net.au wrote: On Thu, 2011-08-04 07:36:19 WAST I received the following security message from my modem-router, which is a Netgear Wireless ADSL2+ Modem Router model DG834G: TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,9090 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,8008 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,3246 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,8123 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,7212 - [DOS] TCP Packet - Source:221.194.46.176 Destination:59.100.232.117 - [PORT SCAN] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,5390 - [DOS] Is there anyone who can translate these arcane messages into plain language? My Netgear manual is of no use whatsoever. My research shows that 221.194.46.176 belongs to China Unicom, while 59.100.232.117 belongs to AAPT, my ISP. Is there any organisation to whom I should forward these and similar messages? Regards, Ray Forma Mob +61 (0) 428 596938 -- The WA Macintosh User Group Mailing List -- Archives - http://www.wamug.org.au/mailinglist/archives.shtml Guidelines - http://www.wamug.org.au/mailinglist/guidelines.shtml Unsubscribe - mailto:wamug-unsubscr...@wamug.org.au -- The WA Macintosh User Group Mailing List -- Archives - http://www.wamug.org.au/mailinglist/archives.shtml Guidelines - http://www.wamug.org.au/mailinglist/guidelines.shtml Unsubscribe - mailto:wamug-unsubscr...@wamug.org.au
Re: Security message from router meaning?
Hi Ray, DOS is 'DoS Denial of Service’ Your Netgear Router’s message is telling you that the attacks to Ports 9090, 8008, 3246, 8123, 7212, 5390 have been ‘dropped’ blocked at your ISP 59.100.232.117. If your wireless Network is using WPA2 security, your information is concealed from eavesdroppers. To check what Ports are open on your computer: 1. Open Network Utility and click Port Scan. 2. Type your IP address and click the Scan button. Type in your Internal IP address To see what Ports are open to the Internet type in your External (Internet) IP Address. If you don’t know how to find your external IP Address, login to your Netgear Router, click on Router Status, IP Address Cheers, Ronni On 06/08/2011, at 3:24 PM, cm wrote: Hi Ray, I am not an expert in this field, but letters DOS usually stand for denial of service attack. China Unicom is the second or third largest service provider in China, so one of their millions of subscribers appears to have launched a DOS attack on your IP address, the large numbers, 8 thousand etc, may be the number of packets received from that address. Another line appears to suggest they did a port scan of your computer, which is to say they looked sequentially at all the socket addresses (80 for instance is the port number for web servers) to see if any were not secured. They can use that information to gain access to your computer should a port be open. You might want to pass the information on to your ISP, but I doubt they can or will do anything about it. Your best defense is to keep on using a NAT router and to run Apple's firewall. Your ISP will give you some level of protection as well. Cheers, Carlo Sent from my iPad On 06/08/2011, at 13:37, Ray Forma r...@smartchat.net.au wrote: On Thu, 2011-08-04 07:36:19 WAST I received the following security message from my modem-router, which is a Netgear Wireless ADSL2+ Modem Router model DG834G: TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,9090 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,8008 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,3246 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,8123 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,7212 - [DOS] TCP Packet - Source:221.194.46.176 Destination:59.100.232.117 - [PORT SCAN] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,5390 - [DOS] Is there anyone who can translate these arcane messages into plain language? My Netgear manual is of no use whatsoever. My research shows that 221.194.46.176 belongs to China Unicom, while 59.100.232.117 belongs to AAPT, my ISP. Is there any organisation to whom I should forward these and similar messages? Regards, Ray Forma Mob +61 (0) 428 596938 -- The WA Macintosh User Group Mailing List -- Archives - http://www.wamug.org.au/mailinglist/archives.shtml Guidelines - http://www.wamug.org.au/mailinglist/guidelines.shtml Unsubscribe - mailto:wamug-unsubscr...@wamug.org.au
Security message from router meaning?
On Thu, 2011-08-04 07:36:19 WAST I received the following security message from my modem-router, which is a Netgear Wireless ADSL2+ Modem Router model DG834G: TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,9090 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,8008 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,3246 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,8123 - [DOS] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,7212 - [DOS] TCP Packet - Source:221.194.46.176 Destination:59.100.232.117 - [PORT SCAN] TCP Packet - Source:221.194.46.176,12200 Destination:59.100.232.117,5390 - [DOS] Is there anyone who can translate these arcane messages into plain language? My Netgear manual is of no use whatsoever. My research shows that 221.194.46.176 belongs to China Unicom, while 59.100.232.117 belongs to AAPT, my ISP. Is there any organisation to whom I should forward these and similar messages? Regards, Ray Forma Mob +61 (0) 428 596938 -- The WA Macintosh User Group Mailing List -- Archives - http://www.wamug.org.au/mailinglist/archives.shtml Guidelines - http://www.wamug.org.au/mailinglist/guidelines.shtml Unsubscribe - mailto:wamug-unsubscr...@wamug.org.au