why am i getting this in the log of the router now....lots of lan access etc etc
[LAN access from remote] from 78.0.219.131:57951 to 192.168.2.2:26162 Thursday, Aug 13,2009 21:13:20
[LAN access from remote] from 212.94.89.65:46904 to 192.168.2.2:26162 Thursday, Aug 13,2009 21:11:10
[LAN access from remote] from 87.204.10.10:4956 to 192.168.2.2:26162 Thursday, Aug 13,2009 20:58:07
[LAN access from remote] from 116.71.164.245:25307 to 192.168.2.2:26162
excellent now a few [DOS] attacks.....
[DOS attack: FIN Scan] attack packets in last 20 sec from ip [88.221.184.167], from ip address in Zurich....closed the ports until i see what's going on here like...
Hackers use the TCP FIN scan to identify listening TCP port numbers based on how the target device reacts to a transaction close request for a TCP port (even though no connection may exist before these close requests are made). This type of scan can get through basic firewalls and boundary routers that filter on incoming TCP packets with the Finish (FIN) and ACK flag combination. The TCP packets used in this scan include only the TCP FIN flag setting.
If the target device's TCP port is closed, the target device sends a TCP RST packet in reply. If the target device's TCP port is open, the target device discards the FIN and sends no reply.
just done a netstat -a on the command line and all looks good...fo now....any ideas or me over reacting
i'm just wondering if that's why my net been cutting out a few times and I've been getting the old balloon up saying net connected!