I don't see anything unusual in any of the logs. There doesn't seem to be any strange or excessive traffic. Disk space and resources usage looks normal. Apps using the network are ntp, nfs, ssh, and bittornado, with very light apache and ftp usage.
snort is configured for just the services I use. It's reporting like this
Code:
Events from same host to same destination using same method
=========================================================================
# of from to method
=========================================================================
4 192.168.0.123 71.203.231.246 (portscan) TCP Portsweep
3 192.168.0.123 70.160.58.224 (portscan) TCP Portsweep
2 192.168.0.123 69.143.45.51 (portscan) TCP Portsweep
2 66.82.16.34 192.168.0.123 ICMP Destination Unreachable Communication
+Administratively Prohibited
2 192.168.0.123 76.104.218.201 (portscan) TCP Portsweep
I'm thinking it must just be a false positive from the torrents or maybe ntp?