[Dshield] DShield Submissions & SMC Router Model SMC7004VWBR

Bruce ecarew2531 at rogers.com
Sat Apr 10 14:53:32 GMT 2004


I've recently updated my home computer with a new XP and added a router at
the gateway. I have been a regular submitter of DShield reports for a number
of years.  I've run into a problem though, ever since I've added the router.
Although it's nice and quiet on my desktop firewall (my desktop firewall
wasn't required to block a single packet since I added the router); I have been
unable to figure out a way to access the router logs in order to submit
DShield reports.

I've configured the router (which has both firewall and IDS capabilities
built-in) to email to me the router logs as they fill up and if the IDS 
portion of
the router kicks in, it will automatically generate an email to me of that
specific event.  Unfortunately the reports are not as granular as I would like.
(I've included a sample at the end of this posting).  The only information
fields presented in the emailed reports are Date, Time of Event, Action Taken,
Source IP

I've contacted Customer Support for SMC and they were not overly helpful.  I
asked if there was a way to access the complete router logs as the reports
emailed to me did not contain more specific details such as
Source/Destination Port, Protocol, Detection/Issue Rule,etc.
The answer from customer service was that there was no other information
available other than the information contained in the email from the router.

I would like to continue to submit DShield reports however, I'am stumped as
to how to do that using an SMC Barricade router.  Does anyone on the list
have experience with this model or could provide some guidance on how to
obtain access to the complete router log in order to submit DShield reports?

Thanks Bruce

Here is a sample of a Barricade Router report as sent to me via email:

Subject: Barricade Alert Message!!

Date: Sat, 10 Apr 2004 02:39:27 -0400

The SMC Barricade Router log has reached capacity. To keep your log 
information up to date the current data will be overwritten with new 
messages. Below is the complete log file of the data that will be overwritten.

You can save this data for review and take any action needed.

---------------------- LOG FILE ------------------------
Fri Apr 09 23:30:40 2004 : Blocked access attempt from 66.185.95.99
Fri Apr 09 23:31:59 2004 : Blocked access attempt from 68.93.89.8
Fri Apr 09 23:40:23 2004 : Blocked access attempt from 61.152.102.20
Fri Apr 09 23:44:56 2004 : Blocked access attempt from 138.89.39.61
Fri Apr 09 23:45:13 2004 : Blocked access attempt from 24.164.36.64
Fri Apr 09 23:46:19 2004 : Blocked access attempt from 61.17.107.11
Fri Apr 09 23:46:52 2004 : Blocked access attempt from 213.122.23.47
Fri Apr 09 23:50:37 2004 : Blocked access attempt from 141.149.79.93
Sat Apr 10 00:00:46 2004 : Blocked access attempt from 213.54.220.172
Sat Apr 10 00:01:23 2004 : Blocked access attempt from 24.203.134.240
Sat Apr 10 00:01:44 2004 : Blocked access attempt from 4.25.242.236
Sat Apr 10 00:06:22 2004 : Blocked access attempt from 203.110.106.207
Sat Apr 10 00:06:56 2004 : Blocked access attempt from 62.195.53.113
Sat Apr 10 00:06:58 2004 : Blocked access attempt from 81.249.173.37
Sat Apr 10 00:07:49 2004 : Blocked access attempt from 62.238.152.72
Sat Apr 10 00:07:55 2004 : Blocked access attempt from 212.182.171.147
Sat Apr 10 00:07:55 2004 : Blocked access attempt from 83.112.138.126
Sat Apr 10 00:07:56 2004 : Blocked access attempt from 67.69.217.42
Sat Apr 10 00:07:56 2004 : Blocked access attempt from 80.236.61.185
Sat Apr 10 00:08:04 2004 : Blocked access attempt from 212.179.185.166
Sat Apr 10 00:08:08 2004 : Blocked access attempt from 217.132.59.132
Sat Apr 10 00:08:12 2004 : Blocked access attempt from 81.203.1.42
Sat Apr 10 00:08:20 2004 : Blocked access attempt from 80.212.232.241
Sat Apr 10 00:08:31 2004 : Blocked access attempt from 82.64.50.114
Sat Apr 10 00:08:36 2004 : Blocked access attempt from 81.37.220.29
Sat Apr 10 00:08:37 2004 : Blocked access attempt from 4.46.131.24
Sat Apr 10 00:08:39 2004 : Blocked access attempt from 80.179.36.134
Sat Apr 10 00:08:40 2004 : Blocked access attempt from 82.80.190.108
Sat Apr 10 00:08:40 2004 : Blocked access attempt from 203.115.104.20
Sat Apr 10 00:08:41 2004 : Blocked access attempt from 81.152.132.73
Sat Apr 10 00:08:44 2004 : Blocked access attempt from 172.183.136.205
Sat Apr 10 00:08:46 2004 : Blocked access attempt from 195.36.249.93
Sat Apr 10 00:08:48 2004 : Blocked access attempt from 172.207.22.120
Sat Apr 10 00:08:50 2004 : Blocked access attempt from 217.81.126.163
Sat Apr 10 00:08:51 2004 : Blocked access attempt from 82.84.4.23
Sat Apr 10 00:08:56 2004 : Blocked access attempt from 172.206.227.21
Sat Apr 10 00:08:56 2004 : Blocked access attempt from 81.42.74.234
Sat Apr 10 00:09:01 2004 : Blocked access attempt from 211.30.151.223
Sat Apr 10 00:09:10 2004 : Blocked access attempt from 213.84.156.172
Sat Apr 10 00:09:10 2004 : Blocked access attempt from 82.217.152.66
Sat Apr 10 00:09:15 2004 : Blocked access attempt from 155.239.130.147
Sat Apr 10 00:09:15 2004 : Blocked access attempt from 195.49.217.2
Sat Apr 10 00:09:24 2004 : Blocked access attempt from 66.233.156.151
Sat Apr 10 00:09:26 2004 : Blocked access attempt from 200.181.251.232
Sat Apr 10 00:09:28 2004 : Blocked access attempt from 80.136.128.100
Sat Apr 10 00:09:43 2004 : Blocked access attempt from 81.249.39.242
Sat Apr 10 00:09:45 2004 : Blocked access attempt from 217.132.65.2
Sat Apr 10 00:09:48 2004 : Blocked access attempt from 68.18.159.61
Sat Apr 10 00:09:50 2004 : Blocked access attempt from 201.0.19.70
Sat Apr 10 00:09:56 2004 : Blocked access attempt from 65.31.61.131
Sat Apr 10 00:10:03 2004 : Blocked access attempt from 81.250.235.121
Sat Apr 10 00:10:18 2004 : Blocked access attempt from 81.70.53.190
Sat Apr 10 00:10:25 2004 : Blocked access attempt from 81.251.36.138
Sat Apr 10 00:10:33 2004 : Blocked access attempt from 217.132.119.211
Sat Apr 10 00:10:37 2004 : Blocked access attempt from 83.28.15.157
Sat Apr 10 00:11:26 2004 : Blocked access attempt from 213.10.46.11
Sat Apr 10 00:11:43 2004 : Blocked access attempt from 217.231.107.39
Sat Apr 10 00:11:54 2004 : Blocked access attempt from 217.126.197.6
Sat Apr 10 00:12:12 2004 : Blocked access attempt from 200.138.75.244
Sat Apr 10 00:12:26 2004 : Blocked access attempt from 217.42.207.146
Sat Apr 10 00:12:26 2004 : Blocked access attempt from 213.39.160.207
Sat Apr 10 00:12:42 2004 : Blocked access attempt from 68.75.162.74
Sat Apr 10 00:12:52 2004 : Blocked access attempt from 81.192.39.162
Sat Apr 10 00:13:11 2004 : Blocked access attempt from 4.8.163.82
Sat Apr 10 00:13:16 2004 : Blocked access attempt from 217.132.97.146
Sat Apr 10 00:13:29 2004 : Blocked access attempt from 69.194.37.91
Sat Apr 10 00:13:51 2004 : Blocked access attempt from 80.145.166.216
Sat Apr 10 00:14:10 2004 : Blocked access attempt from 200.216.174.62
Sat Apr 10 00:14:11 2004 : Blocked access attempt from 82.65.135.70
Sat Apr 10 00:14:38 2004 : Blocked access attempt from 69.137.66.117
Sat Apr 10 00:14:49 2004 : Blocked access attempt from 24.100.168.42
Sat Apr 10 00:14:52 2004 : Blocked access attempt from 217.83.180.239
Sat Apr 10 00:14:53 2004 : Blocked access attempt from 80.28.52.52
Sat Apr 10 00:15:07 2004 : Blocked access attempt from 80.138.37.15
Sat Apr 10 00:15:14 2004 : Blocked access attempt from 62.34.161.105
Sat Apr 10 00:16:06 2004 : Blocked access attempt from 83.152.204.159
Sat Apr 10 00:16:25 2004 : Blocked access attempt from 81.218.199.233
Sat Apr 10 00:16:30 2004 : Blocked access attempt from 81.218.122.243
Sat Apr 10 00:17:16 2004 : Blocked access attempt from 217.132.55.172
Sat Apr 10 00:18:07 2004 : Blocked access attempt from 200.117.23.221
Sat Apr 10 00:18:21 2004 : Blocked access attempt from 80.14.34.245
Sat Apr 10 00:18:39 2004 : Blocked access attempt from 24.160.169.230
Sat Apr 10 00:18:40 2004 : Blocked access attempt from 172.207.43.158
Sat Apr 10 00:19:45 2004 : Blocked access attempt from 200.140.61.87
Sat Apr 10 00:20:12 2004 : Blocked access attempt from 66.130.45.109
Sat Apr 10 00:20:23 2004 : Blocked access attempt from 64.216.106.184
Sat Apr 10 00:20:42 2004 : Blocked access attempt from 62.203.83.64
Sat Apr 10 00:20:45 2004 : Blocked access attempt from 201.0.19.121
Sat Apr 10 00:24:42 2004 : Blocked access attempt from 81.38.174.73
Sat Apr 10 00:28:28 2004 : Blocked access attempt from 68.253.219.74
Sat Apr 10 00:29:43 2004 : Blocked access attempt from 145.53.189.63
Sat Apr 10 00:30:51 2004 : Blocked access attempt from 82.67.233.128
Sat Apr 10 00:34:32 2004 : Blocked access attempt from 218.200.142.250
Sat Apr 10 00:36:25 2004 : Blocked access attempt from 4.77.45.220
Sat Apr 10 00:38:14 2004 : Blocked access attempt from 69.111.115.124
Sat Apr 10 00:38:51 2004 : Blocked access attempt from 68.117.52.63
Sat Apr 10 00:43:24 2004 : Blocked access attempt from 217.226.56.47
Sat Apr 10 00:46:16 2004 : Blocked access attempt from 217.82.185.72
Sat Apr 10 00:51:07 2004 : Blocked access attempt from 213.122.22.101
Sat Apr 10 00:52:30 2004 : Blocked access attempt from 62.219.147.66
Sat Apr 10 00:53:29 2004 : Blocked access attempt from 67.165.190.211
Sat Apr 10 01:01:09 2004 : Blocked access attempt from 68.93.179.209
Sat Apr 10 01:01:34 2004 : Blocked access attempt from 213.245.242.204
Sat Apr 10 01:06:58 2004 : Blocked access attempt from 202.191.253.33
Sat Apr 10 01:09:53 2004 : Blocked access attempt from 66.214.7.117
Sat Apr 10 01:10:42 2004 : Blocked access attempt from 202.12.248.74
Sat Apr 10 01:12:50 2004 : Blocked access attempt from 24.164.33.183
Sat Apr 10 01:13:52 2004 : Blocked access attempt from 3.224.231.188
Sat Apr 10 01:13:53 2004 : Blocked access attempt from 3.241.19.186
Sat Apr 10 01:21:05 2004 : Blocked access attempt from 69.44.152.148
Sat Apr 10 01:21:59 2004 : Blocked access attempt from 68.253.220.239
Sat Apr 10 01:35:02 2004 : Blocked access attempt from 203.110.106.207
Sat Apr 10 01:35:23 2004 : Blocked access attempt from 202.192.3.104
Sat Apr 10 01:36:03 2004 : Blocked access attempt from 208.37.60.24
Sat Apr 10 01:55:22 2004 : Blocked access attempt from 213.122.17.165
Sat Apr 10 01:56:30 2004 : Blocked access attempt from 209.124.235.149
Sat Apr 10 02:04:32 2004 : Blocked access attempt from 220.186.216.147
Sat Apr 10 02:06:21 2004 : Blocked access attempt from 69.44.57.69
Sat Apr 10 02:09:17 2004 : Blocked access attempt from 24.125.72.90
Sat Apr 10 02:09:57 2004 : Blocked access attempt from 61.152.102.20
Sat Apr 10 02:16:02 2004 : Blocked access attempt from 61.100.140.222
Sat Apr 10 02:19:57 2004 : Blocked access attempt from 217.132.78.64
Sat Apr 10 02:20:31 2004 : Blocked access attempt from 4.58.104.34
Sat Apr 10 02:25:22 2004 : Blocked access attempt from 24.103.159.244
Sat Apr 10 02:28:03 2004 : Blocked access attempt from 205.206.134.68
Sat Apr 10 02:31:07 2004 : Blocked access attempt from 217.234.160.144
Sat Apr 10 02:40:13 2004 : Blocked access attempt from 199.71.42.230
Sat Apr 10 02:40:22 2004 : Blocked access attempt from 24.164.31.74




More information about the list mailing list