Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > firewall > Content
Hot Articles
Under Linux system firew
ESET NOD32+ wonderful ti
How the pronunciation an
The open firewall port r
Impediment firewall secu
Individual firewall's tr
20 model of most outstan
Discusses the firewall t
360ARP firewall's simple
Discusses the firewall c
The big spider collabora
One make the supercomput
Establishment firewall i
Deploys the firewall str
About firewall's classif
Recommend Articles
Knew that the Linux oper
Discusses the firewall c
How the pronunciation an
Lets Vista network secur
The big spider collabora
Under Linux system firew
Individual firewall's tr
Establishment firewall i
The network firewall mai
In network security fire
USBKill8.0 implementatio
Discusses the firewall t
Stops up the long-distan
Clearly recognizes the f
About low in high securi
New Articles
Helps you to become kill
The novice fosters the H
Under CMD establishes th
Installs firewall's 12 m
Public Sector organisati
McAfee announces compreh
AppGate adds support for
dns Managed Security Inf
Worthing Borough Council
Hackers use top news sto
Firewall test: From basi
Resists hacker's invasio
Resists the network atta
Takes 0% resources HOST
Teaches you to use the A
Thorough analysis firewall diary record
  Add date: 07/24/2008   Publishing date: 07/24/2008   Hits: 4
Total 6 pages, Current page:1, Jump to page:
 
This article to you will explain that what you did see in firewall's record (Log)? What meanings especially are these ports? You will be able to use these information to make the judgment: Whether I have come under the Hacker attack? What does his/she want to do? This article both are suitable for the maintenance enterprise firewall's security expert, and is suitable in uses individual firewall's family user.

  Now individual firewall starts to be popular, once many net friends saw the warning thought comes under some kind of attack, actually the majority situations are not true.

  First, goal port ZZZZ is any meaning

  All passes through firewall's communication is a connection part. A connection contains one pair mutually “the conversation” IP address as well as pair and IP address correspondence port. The goal port usually means some kind of service which connects. When the firewall prevents (block) some connection, it the goal port “on record” (logfile). This will describe these port's significance.

  The port may divide into 3 broad headings:

  1) recognizes the port (Well Known Ports): From 0 to 1023, they bind closely in some services. Usually these port's communication has indicated some kind of service agreement explicitly. For example: 80 port in fact always HTTP communication.

  2) registers the port (Registered Ports): From 1024 to 49151. They bind loosely in some services. That is many service binding in these ports, these ports uses in many other goals similarly. For example: Many system processing dynamic port starts from 1024.

  3) dynamic and/or private port (Dynamic and/or Private Ports): From 49152 to 65535. Theoretically, should not to serve assigns these ports. In fact, the machine usually assigns the dynamic port from 1024. But also has the exception: SUN RPC port from 32768 starts.

  Obtains the more comprehensive port information from where:

  1. ftp://ftp.isi.edu/in-notes/iana/assignments/port-numbers

  “Assigned Numbers” RFC, the port assigns official sources.

  2. http://advice.networkice.com/advice/Exploits/Ports/

  The port database, contains many system vulnerabilities the ports.

  3. /etc/services

  In the UNIX system document /etc/services contains the usual use the UNIX port to assign the tabulation. In Windows NT this document located at %systemroot%/system32/drivers/etc/services.

  4. http://www.con.wesleyan.edu/~triemer/network/docservs.html

  Specific agreement and port.

  5. http://www.chebucto.ns.ca/~rakerman/trojan-port-table.html

  Described many ports.

  6. http://www.tlsecurity.com/trojanh.htm

  TLSecurity Trojan port tabulation. Is different with other person's collection, the author examined all ports.

  7. http://www.simovits.com/nyheter9902.html

  Trojan Horse survey.

 Second, which usually has regarding firewall's TCP/UDP port scanning?

  This narration usual TCP/UDP port scanning in firewall record information. Remembering: Does not have the so-called ICMP port. If you to explain the ICMP data to be interested, please refer to this article other parts.

 
Other pages: : 1 * 2 * 3 * 4 * 5 * 6 * Next>>
Prev:The domestic firewall system big ratio spells Next:360ARP firewall's simple introduction

Comment:

Category: Home > firewall
Home