<div>
<div class="content wysiwyg-content">
We have a third party company that scans and alerts us of our syslogging however once in a while something comes up that I can't really describe. <br />
<br />
Probable TCP NULL scan detected<br />
System Affected(DIP):<br />
&nbsp; &nbsp; &nbsp; &nbsp; &nbsp;UID &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; IP &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;SIP &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; DIP &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &nbsp; &nbsp; &nbsp; Dport<br />
STLinternet<br />
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;10.2.2.25<br />
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 10.1.1.77<br />
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;10.2.2.25<br />
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;80<br />
<br />
10.2.2.25 is our hardware firewall. 10.1.1.77 is our SIEM EIQ. Could someone help me make sense of this alert?
</div>
</div>


We have a third party company that scans and alerts us of our syslogging however once in a while something comes up that I can't really describe. 

Probable TCP NULL scan detected
System Affected(DIP):
         UID	          IP	             SIP	          DIP	        Dport
STLinternet
	10.2.2.25
	 10.1.1.77
	10.2.2.25
	80

10.2.2.25 is our hardware firewall. 10.1.1.77 is our SIEM EIQ. Could someone help me make sense of this alert?

Probable TCP NULL Firewall Alert

Network Management involves issues that are independent of specific hardware or software, including email policies, upgrade planning, backup scheduling and working with managed service providers for Desktop-As-A-Service (DaaS), Software-As-A-Service (SaaS) and the like through the use of tools, coupled with manufacturer standards, best practice guidelines, policies and procedures plus all other relevant documentation. Network management also includes monitoring, alerting and reporting, management reporting, planning for device or service updates, the backup of configurations, the setting of key performance indicators and measures (KPIs/KPMs), associated service level agreements and problem records as part of the IT Service Management (ITSM) framework.

Network Management

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.