Network Runway Telemetry
List open network gateway ports scanned on public servers. Close open ports to enforce boundary least privilege.
| Vulnerable Port | Exposure Risk | Firewall ACL Action |
|---|---|---|
| Port 22 — SSH (AWS ECS Host Daemon)Open administrative port. Secure via AWS Systems Manager SSM Session Manager. | Critical | |
| Port 1433 — MSSQL (AWS RDS SQL Server)Active RDS database ingress facing public AWS Subnet. Secure via RDS Security Group. | High |
Real-time signatures matching malicious connection sweeps. Activate IPS prevention filters to block source IPs dynamically.
Active signature vector matching: protocol HTTPS/Beacon sweep attempts.
Centralized SIEM platform correlator. Synthesize raw gateway alerts, port checks, and auth drifts into correlation logs.
Active corporate VPN encrypted tunnels. Terminate active sessions to simulate containment of compromised external nodes.
| User & Endpoint | Location | Status | Action |
|---|---|---|---|
| fleet-ops@unitedrentals.comIP: 198.51.100.12 | Chicago, US | Active IPsec | |
| rental-portal@unitedrentals.comIP: 203.0.113.5 | Dallas, US | Active SSL Tunnel |
List of malicious IP blocks locked at firewall boundary. Trace active route path hops to verify origin node networks.
| Origin Attacker IP | Location | Dropped Vol | Trace Audits |
|---|---|---|---|
| 198.51.100.12Type: Brute Force Host | Unknown Proxy | 12,400 packets | |
| 203.0.113.89Type: Port Sweep Host | Eastern Europe Host | 9,800 packets |