Hi folks,
I've recently had many reject querys on port 113 and 137 on our
firewall. These ports are most often used for auth and netbios-ns.
I'm curious as to why I am getting serverl different hosts sending
packets to these ports. Is this something I should be suspicious about
and should report?
Also (being new to the firewall business), what is the best way to report
something. Attempt to contact the hostmaster of the domain the query
came from? Tell them? or what... Thanks bunches.
Sincerely,
Josh Estelle
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
