Managed Sentinel – Alert 238

Alert IDMS-A238
Alert NameInternal systems exposing a large number of protocols to Internet
DescriptionThis alert identifies hosts that are accepting more than 5 protocols from Internet sources. This may indicate misconfigured firewall rules.
Severity LevelMedium
Threat Indicator
MITRE ATT&CK TacticsDiscovery
Log sourcesCommon Security Log
False Positives