Does anyone know if when the Router reports the medium threats if the packets are dropped or is this for information only?
Event Type: Attempted Information Leak
Signature: ET SCAN MS Terminal Server Traffic on Non-standard Port
Severity: medium
Source IP: 195.154.92.15
Destination: <RT2600 External>
Sometimes the Destination is my Synology NAS on the internal IP, a port scan reveals the ports that are open on my NAS and these need to be open.
Should I be doing anything else to secure my network?
Event Type: Attempted Information Leak
Signature: ET SCAN MS Terminal Server Traffic on Non-standard Port
Severity: medium
Source IP: 195.154.92.15
Destination: <RT2600 External>
Sometimes the Destination is my Synology NAS on the internal IP, a port scan reveals the ports that are open on my NAS and these need to be open.
Should I be doing anything else to secure my network?