Hello all,
I apologize if I am missing key information in the initial post, I am still learning about networking and security appliances. I have a question about a specific issue I noticed while running a certain game launcher application on my network.
There is a newer, free-to-play game called Enlisted. This game requires a separate launcher application to run on Windows to download, and I assume, monitor the anti-cheat software status and such. Last night (5-13-2021), I noticed some strange connection issues on Discord, which prompted me to check my Untangle dashboard for irregularities. When I logged in, I was distraught when I saw little blue circles covering about 80% of the globe on the map of network connections. There were just shy of 1000 active sessions (my network seems to float between 300-500 depending on the time of day and use) and connected to tons of ephemeral ports and known standard ports (a couple for SSL, FTP, others protocols as well).
Is this normal? I had a gut reaction that something seemed very off, so I have taken the measure to block several different countries from accessing my network (the list is pretty long going back and looking at it now). I have mostly blocked places located in the Asian-Pacific, China, Russia, South America, the “-ivias,” and most of Europe as I don’t believe there is any specific usage need for these.
Is this an overreaction? The parent company for the game Enlisted, Gaijin, has been around for many years and has several games on Steam, which I know is a legitimate platform. I have not found any research that suggests there is any foul play with this application, but I wanted to put this out there for the greater masses to get your views on it.
Take care,
D0n M3ga