Understanding my logs. Potential security issue or no??
I understand the concepts of TCP/IP, when i was younger used to work as a network support assistant. Lately i feel like i am having a de auth attack done on me. I understand how they work when trying to brute force routers with 3 way handshake. I have logged into my router to check logs is it normal for them to only go back 24 hours? And from what i can gather. all I.P addresses are accounted for. (my 4 devices) but there is another mac address that makes a request to it. which i have no idea what it is yet. at 3am this morning. I guess there is 2 questions does the archer suport services such as papertrail for remote live logs, if not is there a service similar and how do i configure it. Would there be anyone a bit more experienced than me at log analysis go through the last 24 hours of my logs and explain a couple of things to me. Thank you so much guys