I have a home server that I host a couple of services on. I recently opened a port for a game server on my network so I can play with my friends. I received security alerts of malicious activities from three IP addresses within 24 hours of enabling port forwarding. I am basically looking for something I can install on my server that will monitor and log the traffic coming through that port. I tried ntopng and it works great to monitor live connections, but I want to log them as well. Thanks for any help y’all can give!
You must log in or register to comment.
I think you actually want some sort of intrusion detection where it will log recognized attacks. Logging every single packet coming in, while doable, generally requires a lot of resources and storage.
You fucked up and opened your shit. Running your own server to the world is a big job needing a firewall.