[7.880][BUG][OPEN] or Question IPS on reporting

Hi,
this was reported as being fixed, so maybe I am barking up the wrong tree.

Are the following entries counted as attacks or just information?

2010:03:03-00:33:04 fw1-on-house ulogd[4286]:  id="2105" severity="info" sys="SecureNet" sub="ips" name="UDP flood detected" action="UDP flood" fwrule="60013" initf="ppp0" srcip="69.28.227.212" dstip="124.168.44.163" proto="17" length="407" tos="0x08" prec="0x20" ttl="233" srcport="500" dstport="500"
2010:03:03-00:33:04 fw1-on-house ulogd[4286]:  id="2105" severity="info" sys="SecureNet" sub="ips" name="UDP flood detected" action="UDP flood" fwrule="60013" initf="ppp0" srcip="69.28.227.212" dstip="124.168.44.163" proto="17" length="407" tos="0x08" prec="0x20" ttl="233" srcport="500" dstport="500"
2010:03:03-00:36:47 fw1-on-house ulogd[4286]:  id="2104" severity="info" sys="SecureNet" sub="ips" name="ICMP flood detected" action="ICMP flood" fwrule="60014" initf="ppp0" srcip="69.28.227.212" dstip="124.168.44.163" proto="1" length="528" tos="0x08" prec="0x20" ttl="42" type="9" code="0"
2010:03:03-00:36:47 fw1-on-house ulogd[4286]:  id="2104" severity="info" sys="SecureNet" sub="ips" name="ICMP flood detected" action="ICMP flood" fwrule="60014" initf="ppp0" srcip="69.28.227.212" dstip="124.168.44.163" proto="1" length="528" tos="0x08" prec="0x20" ttl="42" type="9" code="0"

Extract for the IPS log, but do not showup on any reports.

Ian M

0 Astaro Beta Bot over 15 years ago

Astaro Beta Report
--------------------------------
Version: 7.880
Type: BUG
State: OPEN
Reporter: RFCat_vk
Contributor:  
MantisID: 
Target version: 
Fixed in version: 
--------------------------------

0 kbr over 15 years ago

I guess that is fixed, but we haven't released the beta that contains the fix.

Can you please take another look with the version we are planning to release this week?
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel