Hello fellow Comodo Users,
I have a problem with my firewall which is blocking more than 500 intrusions each day. I just realized this yesterday and looking back in the logs this has been happening for months now (since dec. 18th).
The intrusion is like this:
Application: Windows Operating System
and then the same source (192) IP to the same destination (92) IP
Can somebody please help me out. I don’t understand if this is a hacking attempt or just a bad firewall setting on my part.
Any help is greatly appreciated.
We’ll need a little more detailed information to make an accurate assessment, but if both of the IP addresses are in the 192.168.x.x range, then they’re both on your LAN. Perhaps you could post some of the entries from your firewall log that show these connections.
The IP address 188.8.131.52 belongs to Barefruit, who provide landing pages for DNS providers, when sites are 404. Are you using Comodo DNS? You mentioned IPv6 but these addresses are IPv4. The log files would be very helpful…