SmartSDR v3.7.4 and the SmartSDR v3.7.4 Release Notes | SmartSDR v2.12.1 and the SmartSDR v2.12.1 Release Notes
SmartSDR v1.12.1 and the SmartSDR v1.12.1 Release Notes
Power Genius XL Utility v3.8.8 and the Power Genius XL Release Notes v3.8.8
Tuner Genius XL Utility v1.2.11 and the Tuner Genius XL Release Notes v1.2.11
Antenna Genius Utility v4.1.8
Need technical support from FlexRadio? It's as simple as Creating a HelpDesk ticket.
Security Alarm Intrusion
I operate remotely and have UPnP activated on my router. The past few days I have begun receiving the following message: " Nmap Scriting Engine - TLS Handshake was blocked. No action is required the intrusion attempt was blocked. This feature detects abnormal behaviors and blocks attempted connections. Review the details for more information. Source IP 167.172.99.9, Client Device Flex TGXL1, Action BLOCK". I do port forwarding to be able to access the TGXL.
Received the same message multiple times but with IP address of 118.194.250.22
How concerned should I be? Should I deactivate UPnP? How far into my LAN have they accessed? How can this be stopped?
Randy KH6XX
Answers
-
Mike-VA3MW Administrator, FlexRadio Employee, Community Manager, Super Elmer, Moderator adminOptions
The TGXL does not do uPNP rules, so that was not generated by the radio.
Did you do a manual port forward for remote operation of your TGXL?
0 -
Yes, I am doing a manual port forward for the TGXL. These notifications are coming from my ISP, not from the Flex equipment.
I also am getting a security alarm "Nmap Scripting Engine - Service Escape Character Probe was blocked". The IP address was that of my local PC and client device on the alarm indicated the name of that PC. The action indicated BLOCK. My ISP is using "ProtectIQ". There are two Intrusion settings available that are not enabled now. One is IPS Protocol Anomaly and the other is IPS Port-Scan Defense. Should these be enabled?
0 -
Mike-VA3MW Administrator, FlexRadio Employee, Community Manager, Super Elmer, Moderator adminOptions
yep, I understand that part.
We have no experience with those products, what they do and how they work.
Others may be able to offer an opinion. Sorry
0 -
This "Nmap Scripting Engine TLS Handshake was blocked" appears to only be happening on the TGXL and none of the other Flex devices being accessed remotely.
0
Leave a Comment
Categories
- All Categories
- 247 Community Topics
- 2.1K New Ideas
- 488 The Flea Market
- 7.4K Software
- 5.9K SmartSDR for Windows
- 135 SmartSDR for Maestro and M models
- 330 SmartSDR for Mac
- 241 SmartSDR for iOS
- 224 SmartSDR CAT
- 161 DAX
- 344 SmartSDR API
- 8.5K Radios and Accessories
- 6.9K FLEX-6000 Signature Series
- 772 Maestro
- 42 FlexControl
- 836 FLEX Series (Legacy) Radios
- 727 Genius Products
- 391 Power Genius XL Amplifier
- 252 Tuner Genius XL
- 84 Antenna Genius
- 224 Shack Infrastructure
- 151 Networking
- 371 Remote Operation (SmartLink)
- 118 Contesting
- 583 Peripherals & Station Integration
- 116 Amateur Radio Interests
- 810 Third-Party Software