ultimamente ho problemi di linea (ping e continue disconnessioni) ho attivato il log degli eventi e oggi l'ho trovato pieno di questi:
Spoiler:Oct 5 01:08:33 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=93.146.184.72 DST=151.51.63.91 LEN=56 TOS=0x00 PREC=0x00 TTL=114 ID=474 DF PROTO=TCP SPT=61377 DPT=58548 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 5 01:22:53 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=93.146.184.72 DST=151.51.63.91 LEN=56 TOS=0x00 PREC=0x00 TTL=114 ID=31870 DF PROTO=TCP SPT=61999 DPT=58548 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 5 01:28:55 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=58.60.10.10 DST=151.51.63.91 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=12200 DPT=9415 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 5 01:40:46 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=93.146.184.72 DST=151.51.63.91 LEN=56 TOS=0x00 PREC=0x00 TTL=114 ID=14804 DF PROTO=TCP SPT=62690 DPT=58548 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 5 01:54:54 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=93.146.184.72 DST=151.51.63.91 LEN=56 TOS=0x00 PREC=0x00 TTL=114 ID=6700 DF PROTO=TCP SPT=63235 DPT=58548 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 5 02:01:01 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=93.146.184.72 DST=151.51.63.91 LEN=56 TOS=0x00 PREC=0x00 TTL=114 ID=9968 DF PROTO=TCP SPT=63504 DPT=58548 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 5 02:09:20 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=190.234.9.22 DST=151.51.63.91 LEN=60 TOS=0x00 PREC=0x00 TTL=43 ID=5438 DF PROTO=TCP SPT=2374 DPT=23 WINDOW=5808 RES=0x00 SYN URGP=0
Oct 5 02:19:55 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=71.98.98.60 DST=151.51.63.91 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=23064 DF PROTO=TCP SPT=2129 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0
Oct 5 02:29:54 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=93.146.184.72 DST=151.51.63.91 LEN=56 TOS=0x00 PREC=0x00 TTL=114 ID=12546 DF PROTO=TCP SPT=64765 DPT=58548 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 5 02:43:10 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=93.146.184.72 DST=151.51.63.91 LEN=56 TOS=0x00 PREC=0x00 TTL=114 ID=12597 DF PROTO=TCP SPT=65306 DPT=58548 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 5 02:49:30 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=93.146.184.72 DST=151.51.63.91 LEN=56 TOS=0x00 PREC=0x00 TTL=114 ID=31069 DF PROTO=TCP SPT=49179 DPT=58548 WINDOW=8192 RES=0x00 SYN URGP=0
Oct 5 03:00:31 user alert kernel: Intrusion -> IN=ppp_0_8_35_1 OUT= MAC= SRC=222.45.112.59 DST=151.51.63.91 LEN=40 TOS=0x00 PREC=0x00 TTL=109 ID=256 DF PROTO=TCP SPT=12200 DPT=8090 WINDOW=8192 RES=0x00 SYN URGP=0
che vuol dire di preciso?
la rete wireless è nascosta e protetta da password wpa2, dovrebbe bastare o mi devo preoccupare di qualche intrusione?
il router è un dlink g3670b