Not what you are looking for? Ask the experts!
Question regarding entry in 'Firewall - Activities' section of 'Security History'
My apologies if the question I'm about to ask has already been answered - I've tried to do searches on the forum, but I can't find a definitive answer to the question I am now about to ask.
I upgraded my Norton 360 earlier today to version 184.108.40.206 and this evening, while opening up the Security History an entry which said the following:
I also noticed further entries, all within a few seconds to a few minutes of each other, which all had the same 'activity' , i.e. 'Rule rejected UDP(17) traffic....' etc., but the only difference was that the remote service port number had changed, i.e. in the above image the remote service port number was 36535 while another entry had the remote service port was listed as 62889.
I am sure by the fact that these entries exist show that Norton is indeed protecting me, but can anyone help me understand what is going on? I am connected to a protected wireless network, so something trying to gain access to the protected network (port scanner maybe?) and Norton is informing me that it is just protecting me against these 'attacks', or is it something else? More than this, should I be concerned in any way over such an entry in the Security history?
Anything that can help me understand this better is very much appreciated!
With kind regards,
PS. I don't know if this makes any difference (and apologies if I'm making this harder to understand, but I've had a look at the Network Security map and discovered that one of the 'Remote IP' addresses in a more recent entry relates to another computer on the network. I have 'Computer Discovery' turned OFF. Could it be that this other computer on the network is trying to 'communicate' and Norton is succesfully blocking it? But if so, what does the 'Local IP: 220.127.116.11' have to do with it?