I would like to know if anyone has this issue and wondering how could this happen?
I am running Astaro 8.003 on ASG220 for the company I work for, the service is limit and open only what is using, mainly the box function as smtp proxy.
I have notice that someone is trying to access to WebAdmin console. Even the password attempt has failed and the guy who try to access is being block after 2 attempt for period of time. That does not worries myself until I see that the attempt came from 0.0.0.0 !!!
I am curious to know how can this happen??? I already configured it in WebAdmin setting that only limit network source can access to WebAdmin, usually from internal , VPN and safe IP address. , but these guy come from the network that I could not drop.
One thing I made change is to turn IDS on.. Have to see if it might help.
Can someone point me out how to prevent this to happen? Even though that guy still fail guessing the password, but who knows.
Thanks.
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
