Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
Confused by some entries blocked by Suricata
« previous
next »
Print
Pages: [
1
]
Author
Topic: Confused by some entries blocked by Suricata (Read 1804 times)
hushcoden
Hero Member
Posts: 544
Karma: 23
Confused by some entries blocked by Suricata
«
on:
February 03, 2021, 09:48:11 pm »
A few days ago I decided to not renew my Kaspersky licence and to use Windows Defender, but since then I see some 'strange' entries in the Suricata log, that is my laptop trying to connect to 205.185.216.10 or 205.185.216.42 and those two IP addresses trying to connect to my laptop (attached an example).
Does anybody has noticed the same, by any chance? It seems being related to Windows Update, I really doubt my laptop is infected...
Tia.
Logged
lfirewall1243
Hero Member
Posts: 1386
Karma: 45
Re: Confused by some entries blocked by Suricata
«
Reply #1 on:
February 16, 2021, 10:10:58 pm »
never hatte that but is are known for Windows updates
https://answers.microsoft.com/en-us/windows/forum/all/20518521610-and-20518521642-windows-update-or-not/50939772-32d1-427c-9bdd-8f7efe8a8817
«
Last Edit: February 16, 2021, 10:17:05 pm by lfirewall1243
»
Logged
(Unoffial Community) OPNsense Telegram Group:
https://t.me/joinchat/0o9JuLUXRFpiNmJk
PM for paid support
hushcoden
Hero Member
Posts: 544
Karma: 23
Re: Confused by some entries blocked by Suricata
«
Reply #2 on:
February 16, 2021, 10:48:20 pm »
Thanks... didn't know MS also using Highwinds servers...
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
Confused by some entries blocked by Suricata
