[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 150
  • Last Modified:

Excessive watchguard traffic

We have a Watchguard XTM330 device. The logs are showing a fairly constant stream of denied traffic from external IP addresses to our public IP.
Can anyone help with interpreting these and should they be of concern.
I have attached a screen clip of the traffic monitor window. Sorry it is not the clearest.
I have also attached the text entries.
Document.rtf
Document-one.rtf
0
wsmyth
Asked:
wsmyth
  • 2
1 Solution
 
gheistCommented:
Can you attach logs in compressed text format?
0
 
wsmythAuthor Commented:
txt version attached
0
 
gheistCommented:
It looks like common distributed portscan. Watchguard (or even human operator) cannot identify this type of access and log a short line for all related packets.
Just check your rules that nohing unnecessary shows up from internet to make sure you are safe.
0

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now