router log

[lp2789]

Hi,

I have been looking at my router log on a daily basis and for the past week it has contained some dodgy items, can anyone shed some light on whats going on:

[DOS attack: FIN Scan] attack packets in last 20 sec from ip [209.85.229.106], Saturday, Jan 30,2010 21:07:08
[DOS attack: FIN Scan] attack packets in last 20 sec from ip [209.85.229.156], Saturday, Jan 30,2010 21:07:06
[DOS attack: FIN Scan] attack packets in last 20 sec from ip [209.85.229.147]

[Service blocked: ICMP_echo_req] from source 77.111.224.202, Sunday, Jan 31,2010 12:16:23
[Service blocked: ICMP_echo_req] from source 77.111.212.22, Sunday, Jan 31,2010 12:16:22
[Service blocked: ICMP_echo_req] from source 77.111.212.22, Sunday, Jan 31,2010 12:16:10
[Service blocked: ICMP_echo_req] from source 77.111.224.202, Sunday, Jan 31,2010 12:16:09
[Service blocked: ICMP_echo_req] from source 77.111.212.22, Sunday, Jan 31,2010 12:14:34
[Service blocked: ICMP_echo_req] from source 77.111.224.202, Sunday, Jan 31,2010 12:14:33

[DOS attack: Teardrop] attack packets in last 20 sec from ip [77.70.31.119], Monday, Feb 01,2010 13:51:31



This is occuring all day every day, I have enabled all the security features on my netgear WGR614 and I have enabled mac adress filtering just to be sure.

 

[Dist]

Well for a start mac address filtering isn't a security feature, it wont stop anything realy. As for the DOS attack stuff, are you running any torrents? once you close your torrent client the packets can still keep comming, and without an open connection your router may mistake it for a DOS attack instead of legitimate traffic.

You should just ignore it unless it is actully causing you problems. Port scans and strange packets are just some of the daily things that happen on the internet, nothing you can do to avoid it, and unless someone is specificaly targeting you then its unlikely you are being DOS attacked.