Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Wireless Security » wireless port scan attacked ???
Search Topic:
Uniqs:
756		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Forum Guidelines ·Wireless Security FAQ ·Keith's FAQ
Cisco 1131AG, WEP and WPA work, but not WPA2 »
« Wireless question  
AuthorAll Replies


jp_smart

@primus.ca

wireless port scan attacked ???


when i saw my router log file i saw following four to five entries like this and also some PSK port scan attcked.
i don't know actually what is this? so if anybody knows than please guide me.. i know that this is not good for any wireless network or internet users only so please guide me to stop this..

Xmas port scan attack from WAN (ip:) detected.
to forum · permalink · 2009-05-24 15:55:47 · Reply to this

docrice

join:2008-03-31
Fremont, CA

 Xmas port scan involves an "odd" packet that is intentionally sent to an address where the packet's IP header has certain "unusual" flags set on it. Depending on the IP stack on the receiving host, it responds (or not) in a certain way which allows the originator to determine host characteristics.

This is very common on interfaces facing the Internet directly and it's not something you can stop. Port scans are a fact of life like pollution outside your home's front door.

A "PSK port scan" presumably is just detected attempts of someone trying to associate using an encryption key based on an incorrectly computed pairwise master key. Someone within radio range is probably trying different pre-shared key values to see if they can tap into your wireless connection.
to forum · permalink · · 2009-05-24 16:02:52 · Reply to this


SYNACK
Just Firewall It
Premium,Mod
join:2001-03-05
Venice, CA
·Comcast Formerly ..

Host:
Networking
Virtual Private Ne..
Netgear
ZyXEL
reply to jp_smart
First of all the Xmas port scan apparently came from the WAN, not via wireless. What arrives there is out of your control, so there is nothing you can do except ignore it. There is no danger. Do you forward any ports?

What is the make and model of your router. Most cheap routers have relatively primitive detection algorithms, so it might even well be a false positive. Can you give the full log entry (source IP, destination port, etc.)
to forum · permalink · · 2009-05-27 15:25:21 · Reply to this
-
Forums » Up and Running » Security » Wireless SecurityCisco 1131AG, WEP and WPA work, but not WPA2 »
« Wireless question  

Wednesday, 11-Nov 00:06:38 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [125] Moto Sold About 100,000 Droids
· [95] Verizon Keeps Swinging At AT&T
· [86] VoIP Over 3G Still Not Working For iPhone
· [67] Government Will Release Some Telco Wiretap Lobbying Documents
· [62] Verizon's Hanging Up On Rural America
· [49] Verizon's Higher ETFs Annoy Senator
· [34] Bill Would Force ISPs To Block Financial Scams
· [32] Sprint Announces Job Cuts
· [24] Mediacom Hints At 50, 100 Mbps Speeds
· [24] Google Offers Free Holiday Airport Wi-Fi
Most people now reading
· Windows 7 boot manager editing questions [Microsoft Help]
· RG Firmware update to VDSL2 this morning [AT&T U-verse]
· Holy work line speeds!! [TekSavvy]
· Google Has Acquired Gizmo5 [VOIP Tech Chat]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· throttled MLPPP? Bandwidth graph attached. [TekSavvy]
· [ Classes] ATTN Death Knights - Post your spec for critique! [World of Warcraft]
· Slow speed lately? [TekSavvy]
· Cellulose v Fiberglass for the attic [Home Repair & Improvement]