Portscan attacks from somewhere
I realize this is a lamer/beginner question, but I’ve been attacked by a couple of addresses in China and I’m not sure how to close the hole. My snort logs (yes I’m using snort! I see you are impressed) show things like this: TCP Portscan [**] [122:1:0] (portscan) TCP Portscan [**] [Priority: 3] 11/09-06:48:46.652278 58.218.199.227 … Read more