This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion
NMAP Ping

Hi All

For the last couple of days I am getting the following attack from panthercdn.com and Mozilla
2009:06:13-16:11:03 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="63.245.213.124" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2" generator="1" msgid="0"

2009:06:13-16:11:03 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="63.245.209.126" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2" generator="1" msgid="0"

2009:06:13-16:11:03 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="59.151.50.247" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2" generator="1" msgid="0"

2009:06:13-16:11:03 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="59.151.50.248" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2" generator="1" msgid="0"

2009:06:13-16:11:42 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="63.245.213.101" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2" generator="1" msgid="0"

2009:06:13-16:11:43 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="63.245.213.102" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2" generator="1" msgid="0"

2009:06:13-16:11:43 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="59.151.50.247" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2" generator="1" msgid="0"

2009:06:13-16:11:43 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="59.151.50.248" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2" generator="1" msgid="0"

2009:06:13-16:12:23 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="59.151.50.247" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2" generator="1" msgid="0" PING NMAP" group="420" srcip="66.114.48.35" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2"  generator="1" msgid="0"2009:06:13-09:32:27 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="66.114.50.19" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2"  generator="1" msgid="0"

2009:06:13-09:32:27 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="66.114.49.56" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2"  generator="1" msgid="0"

2009:06:13-09:32:27 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="93.188.128.46" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2"  generator="1" msgid="0"

2009:06:13-09:32:27 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="66.114.51.112" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2"  generator="1" msgid="0"

2009:06:13-09:32:27 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="122.152.142.14" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2"  generator="1" msgid="0"

2009:06:13-09:32:27 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="66.114.53.31" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2"  generator="1" msgid="0"

2009:06:13-09:32:27 Astaro barnyard[7821]: id="2101" severity="warn" sys="SecureNet" sub="ips" name="Intrusion protection alert" action="drop" reason="ICMP PING NMAP" group="420" srcip="202.172.101.37" dstip="172.16.1.2" proto="1" srcport="8" dstport="0" sid="469" class="Attempted Information Leak" priority="2"  generator="1" msgid="0"
Today for example I had 1000 attacks :S

Anybody heard of panthercdn.com?
This thread was automatically locked due to age.