I’m not super duper experienced with firewalling bear with me.
I put a rule in my IPv4 firewall to log all new connection attempts (well, specifically !related and !established). Just to see what would happen.
I’m seeing a lot of new packets hitting my external interface with the source port 443 and 80 and some random destination port.
I’m trying to think of a reason why this would be happening other than a TCP inject attack?
Is that what this is?
Thanks.