Hi All ,
I have ASG120 , i have started enabling firewall notification system
everything went alright , but before 1 week , i have recieved daily more
than 6 notification mail IPS ( intrusion prevention ) like the follows :
Intrusion Prevention Alert
An intrusion has been detected. The packet has been dropped automatically.
You can toggle this rule between "drop" and "alert only" in WebAdmin.
Details about the intrusion alert:
Message........: WEB-MISC WebDAV propfind access
Details........: Snort ::
Time...........: 2010:12:04-19:11:25
Packet dropped.: yes
Priority.......: 2medium
Classification.: access to a potentially vulnerable web application IP protocol....: 6 (TCP)
Source IP address: 91.75.134.133
- Where are my results?
- Query the RIPE Database
- http://ws.arin.net/cgi-bin/whois.pl?queryinput=91.75.134.133
- APNIC - Query the APNIC Whois Database
Source port: 49210
Destination IP address: 192.168.1.1 (server)
- Where are my results?
- Query the RIPE Database
- http://ws.arin.net/cgi-bin/whois.pl?queryinput=192.168.1.1
- APNIC - Query the APNIC Whois Database
Destination port: 80 (http)
--
System Uptime : 16 days 23 hours 38 minutes
System Load : 0.09
System Version : Astaro Security Gateway Appliance 8.003
Please refer to the manual for detailed instructions.
i searched the net , no results ! .
Please could you help me telling what is this ??
Regards
This thread was automatically locked due to age.
