UTM、週報 02/24

たまたま使った出先のAP、もちろん特に何か意図してUTMと通信したわけでもない物も含まれてるかも Date: 2018/02/24 Type: weekly

Network Protection Packet Filter / Firewall TOP10 dropped source hosts Total dropped packets: 19 906 Top Source IP User / Host Packets % 1 x.x.x.x 1 334 6.70% 2 54.251.46.31 amazonaws.com から。/24から五月中旬も 365 1.83% 3 x.x.x.x 341 1.71% 4 5.188.11.25 5.188.11.25 211 1.06% 5 108.61.213.184 209 1.05% 6 191.101.167.235 /24から五月中旬も 200 1.00% 7 77.72.82.147 /24から五月中旬も 199 1.00% 8 77.72.82.92 hostby.ups-gb.co.uk 199 1.00% 9 77.72.82.80 hostby.ups-gb.co.uk 192 0.96% 10 65.49.77.117 五月中旬も 182 0.91% TOP10 dropped destination hosts Total dropped packets: 19 906 Top Destination IP User / Host Packets % 1 x.x.x.x External (WAN) (Address) 16 992 85.36% 2 x.x.x.x 885 4.45% 3 27.114.23.219 i27-114-23-219.s41.a011.ap.plala.or.jp 726 3.65% 4 8.8.8.8 DNS Forwarder 318 1.60% 5 8.8.4.4 google-public-dns-b.google.com 220 1.11% 6 x.x.x.x 154 0.77% 7 x.x.x.x 96 0.48% 8 108.177.125.188 108.177.125.188 30 0.15% 9 112.64.161.195 112.64.161.195 28 0.14% 10 172.217.31.138 nrt20s08-in-f10.1e100.net 24 0.12% TOP10 dropped services Total dropped packets: 19 906 Top Service Name Protocol Service Packets % 1 MICROSOFT-DS TCP 445 4 930 24.77 % 2 TELNET TCP 23 2 313 11.62 % 3 UDP 13792 673 3.38 % 4 MS-SQL-S TCP 1433 625 3.14 % 5 DOMAIN UDP 53 585 2.94 % 6 HTTP-ALT TCP 8080 563 2.83 % 7 SSH TCP 22 435 2.19 % 8 TCP 52869 396 1.99 % 9 TCP 8545 370 1.86 % 10 SIP UDP 5060 236 1.19 %  Web Protection Web Filtering TOP10 Blocked Categories Total requests blocked by url filter: 856 Category Attempts % 1 Web Ads 856 100.0 %

Sophos UTM Copyright 2002-2018 Sophos Ltd. All rights reserved.