Folks, In several days of running, I've seen unsolicited net-to-gateway [malicious] traffic - summarily discarded by the snat plugin - as follows:
* Mirai botnet [tcp -> port 5747] * Microsoft WSDAPI [tcp -> port 5358] * Telnet [tcp -> port 23] * HTTP alternate [tcp -> port 81] * SQL server [tcp -> port 1433] Ip4 source addresses from all over the planet. The rates are really low, a few pkts/hr, but it's a clear warning to be careful. In case enquiring minds want to know. Thanks... Dave
_______________________________________________ vpp-dev mailing list vpp-dev@lists.fd.io https://lists.fd.io/mailman/listinfo/vpp-dev
