port scanning possible to port 80
Got 3 computers connected by ethernet to a routermodem.
At this routermodem only port 80 is forwarded to a webserver ( one of
the 3 computers ) .
Now I realized several times a port scanning attack displayed
at interactive firewall of Webserver ( Apache at Mandriva LINUX ).
Actually the message is port scanning attempt of heanet.......
( actually this names are different mostly ).
I wonder how to figure out is this portscanning attack possible
through port 80 or is the modemrouter ( Draytek VIGOR )
misconfigured, compromised or one of the other 2 machines ( Windows )
are compromised and attacking the server inside intranet ?