OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • Intrusion Detection and Prevention »
  • DMZ outbound traffic blocked should I worry or not?
« previous next »
  • Print
Pages: [1]

Author Topic: DMZ outbound traffic blocked should I worry or not?  (Read 1433 times)

enrirollins

  • Newbie
  • *
  • Posts: 1
  • Karma: 0
    • View Profile
DMZ outbound traffic blocked should I worry or not?
« on: January 07, 2023, 12:59:02 am »
Hello,

I have suricata running on 2 interfaces, LAN and DMZ (not enabled on WAN).
Under the DMZ I have a web server (80 and 443 forwarded from WAN), I've spotted some alerts regarding outbound traffic from this server:





Do I have to worry or is it only a blocked response originating from a contact by a compromised host (think so)?

Sorry If it's a stupid question but I'm quite a newbie

Thanks!

Enrico
Logged

featheredfifth

  • Newbie
  • *
  • Posts: 6
  • Karma: 0
    • View Profile
Re: DMZ outbound traffic blocked should I worry or not?
« Reply #1 on: April 20, 2023, 05:18:24 am »
Hi
I am also new and inexperienced. Hope someone can explain in more detail.
slope game
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • Intrusion Detection and Prevention »
  • DMZ outbound traffic blocked should I worry or not?
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2