• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

Concerned with NAS & Router attacks.

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Firewalls // Intrusion Detection - External Security

View previous topic :: View next topic  
Author Message
robned
Just Arrived
Just Arrived


Joined: 01 Aug 2010
Posts: 0


Offline

PostPosted: Sun Aug 01, 2010 11:11 am    Post subject: Concerned with NAS & Router attacks. Reply with quote

Hi all,

I've recently purchased a NAS, QNAP that I have given internet connection through DYNDNS since I'm on a dynamic IP setup on cable.

In less than 1 day, I have had 6 attack attempts - leading to banning the attacking IP on the NAS. The setup is so that if 5 attempts with the wrong password has been entered, the IP gets blocked for 60 minutes.

This triggered my worries and I started looking at my system in general.
I have a DLink DIR-655 which might not be the greatest out there.

On all systems (4 computers) I run Zonealarm Extreme (I guess some of you won't like ZA), but it's been my companion for 8 years...

The issues:
1) Of course there are several posts on Blocked incoming TCP, UDP, ICMP. on the Router. It starts even the second I turn on the router from a reset. Some from China and Russia.
Then there are outgoing TCP & ICMP that is worrying me. I have several programs updating and upgrading. So some I can trace to the program, but most of them I can not.
Is there any way I can figure out wich program - or service, that is trying to send out the packet to the odd IP??

2) My Router might not be the brightest, and my needs are for home use / small office. But are there any routers where I can import IPTables and basically block out IP for a bunch of countries that are bad? My router only allows manual input through GUI.

3) My NAS is running on port-forwarding on the router for ports 8080, 80, 21 (ftp) etc but only on these ports. Even so, I have received 6 attacks. Is this normal? As I mentioned I use DYNDNS. At the moment I'm questioning the security for the NAS.

4) Is it safer storing files I want to share on a third party Online system like Sugarsync? Or similar??

Thank you,
Worried Noob
Back to top
View user's profile Send private message
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Firewalls // Intrusion Detection - External Security All times are GMT + 2 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register