We have a third party company that scans and alerts us of our syslogging however once in a while something comes up that I can't really describe.
Probable TCP NULL scan detected
UID IP SIP DIP Dport
10.2.2.25 is our hardware firewall. 10.1.1.77 is our SIEM EIQ. Could someone help me make sense of this alert?