Re: ISA Server detected an all port scan attack
From: Matt Gibson (mattg_at_blueedgetech.ca)
Date: 06/02/04
- Next message: Brian Christensen: "Srtange SBS2000 local rights problem"
- Previous message: Marina Roos [SBS-MVP]: "Re: logging onto domain Att Marina Ross/Roger Crawford"
- In reply to: Des: "ISA Server detected an all port scan attack"
- Next in thread: Mark: "ISA Server detected an all port scan attack"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 2 Jun 2004 10:14:15 -0700
My comments are inline.
"Des" <anonymous@discussions.microsoft.com> wrote in message
news:AD9AFD08-896A-4393-A8A4-55F591B94A0F@microsoft.com...
> Is there any way I can find out what causes these things, and how to stop
them..
Someone's doing a port scan on your machine...there's nothing you can do to
stop that. If you want to stop recieving the notices as often, if you right
click on "Packet Filters" in the ISA MMC, you can set the thresholds for
when it will e-mail you, or you can turn that off all together.
> I get at least 5 different addresses a day, and a couple of them get to my
inbox over 15 times a day.
Isn't the internet safe and fun?
> heres one - ISA Server detected an all port scan attack from Internet
Protocol (IP) address 64.191.159.133.
>
> I can do a whois, but that doesnt even tell me much on who they are.
If ISA's notifying you, and ISA's properly configured, and the server is
patched, I wouldn't worry about it.
> Thanks.
-Matt
- Next message: Brian Christensen: "Srtange SBS2000 local rights problem"
- Previous message: Marina Roos [SBS-MVP]: "Re: logging onto domain Att Marina Ross/Roger Crawford"
- In reply to: Des: "ISA Server detected an all port scan attack"
- Next in thread: Mark: "ISA Server detected an all port scan attack"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
