[Dshield] ZAPro 3

Keith Gainford keith.gainford at which.net
Thu Mar 14 18:13:43 GMT 2002


Since updating I have been getting log entries that didn`t appear with the
previous version. Perhaps it is the way I have it setup, however I am using
default settings. For instance The FWROUTE entries didn`t appear with the
previous version, and I am noticeing a lot more UDP ports. I would like any
advice on the Alert Events page as to what to check and what not to. I don`t
want to waste anyone`s time submitting logs that are of no use.

Many Thanks

Keith G



FWIN 14/03/02 12:03:16 +0:00 GMT 213.1.119.97
host213-1-119-97.btinternet.com 53 213.122.165.110
host213-122-165-110.in-addr.btopenworld.com 1757 UDP No Unknown
FWROUTE 14/03/02 12:03:16 +0:00 GMT 213.122.165.110
host213-122-165-110.in-addr.btopenworld.com 1756 165.2.141.102
sixcontinentshotels.com 80 TCP (flags:S) No
FWIN 14/03/02 11:11:56 +0:00 GMT 213.1.119.97
host213-1-119-97.btinternet.com 53 213.122.22.226
host213-122-22-226.in-addr.btopenworld.com 1040 UDP No Unknown
FWROUTE 14/03/02 11:11:56 +0:00 GMT 213.122.22.226
host213-122-22-226.in-addr.btopenworld.com 1039 213.1.119.97
host213-1-119-97.btinternet.com 53 UDP No




More information about the list mailing list