New
#1
DoS attacks
I just bought a Motorola SB6121 modem and a Netgear WNDR4300 router. In checking the logs I have a bunch of DoS attacks. Should I be concerned?
I just bought a Motorola SB6121 modem and a Netgear WNDR4300 router. In checking the logs I have a bunch of DoS attacks. Should I be concerned?
What is in the logs that leads you to believe this?
These are just a couple:
[DoS Attack: SYN/ACK Scan] from source: 58.216.26.243, port 17010, Monday, December 01, 2014 00:23:06
[DoS Attack: SYN/ACK Scan] from source: 176.31.101.5, port 6667, Sunday, November 30, 2014 23:52:52
[DoS Attack: SYN/ACK Scan] from source: 176.31.101.5, port 80, Sunday, November 30, 2014 23:29:47
[DoS Attack: SYN/ACK Scan] from source: 176.31.101.5, port 6667, Sunday, November 30, 2014 23:14:17
[DoS Attack: SYN/ACK Scan] from source: 176.31.101.5, port 80, Sunday, November 30, 2014 23:02:29
[DoS Attack: SYN/ACK Scan] from source: 176.31.101.5, port 6667, Sunday, November 30, 2014 23:01:11
[DoS Attack: SYN/ACK Scan] from source: 37.48.86.133, port 80, Sunday, November 30, 2014 22:46:49
Anything directly connected to the Internet, like routers, will be targeted like this all the time. It's normal.
I've stopped checking my router logs cause there's no point in doing that. The best you can do with your router is to disable remote management, UPnP, port forwards, and make sure you're not using the default password that came with the router.
Use ShieldsUp to verify that everything is closed from the outside: https://www.grc.com/x/ne.dll?bh0bkyd2