Netcore inbound Hacks Attempt
-
I am noticing a blizzard of Netcore Router hack attacks that have been flagged by Suricata. Never seen this many in the past. Anyone else seeing this situation?
-
Suricata is "just" an engine. W/o rules there isnt much going on ;)
Post a couple of those packets and we could write a rule to block it.
Cheers.
F.
-
I have many this alert (5-10 1/h)
-
I am getting the same on my network. Nothing you need to be concerned with.
If you are concerned, put a WAN rule to block UDP traffic from port 53413
-
Thanks to everyone for the update. The hacks just came out of the blue!
-
All of the IPs that are scanning for this port are mainly in China and South America…..
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.