That be one way to test it. Change your IP (you can change the mac address in your router) and see if the attacks come. Give the IP out to a few of your trusted users let them play see what happens, no attacks then you can try to update your DNS and see what happens.
If you can learn what attack they are using you can then try to block it. Or call your ISP and let them know your being attacked, its in their best interest to find out why and stop it. Just don't mention you run a server.
FIRE IN THE HULL!!! -*Problem*-
- BearFather
- Posts: 652
- Joined: Sun Feb 09, 2014 6:27 pm
- Location: Portland, OR
- Contact:
Re: FIRE IN THE HULL!!! -*Problem*-
I like the, tell your ISP, it's also in their best interest.
Thanks! I was worried, like, what am I supposed to do?
By the way, something scary?
I left the server off the network so I can work on it.
Someone else from an IP somehow was trying to login despite everyone else not coming through my router.
Audit trail says: NON SGA CLIENT
Still pings for 5 seconds.. 10 connects for like 3-5 seconds each..
Different IP all the time too.
Even if the router isn't pointing them to my computer port: 192.168.1.3.
Scary?? )
Julian
Thanks! I was worried, like, what am I supposed to do?
By the way, something scary?
I left the server off the network so I can work on it.
Someone else from an IP somehow was trying to login despite everyone else not coming through my router.
Audit trail says: NON SGA CLIENT
Still pings for 5 seconds.. 10 connects for like 3-5 seconds each..
Different IP all the time too.
Even if the router isn't pointing them to my computer port: 192.168.1.3.
Scary?? )
Julian
- BearFather
- Posts: 652
- Joined: Sun Feb 09, 2014 6:27 pm
- Location: Portland, OR
- Contact:
Re: FIRE IN THE HULL!!! -*Problem*-
Welcome to the internet.
Everyone is scanned constantly with a server or not. When you have port 23 or 22 open, you will get lots of scripts trying to logging in and guessing at passwords. How prevalent scanning of ports is, as soon as you get an IP within 5 min your ports have been scanned and they know which ones are open/closed. Server or not.
Everyone is scanned constantly with a server or not. When you have port 23 or 22 open, you will get lots of scripts trying to logging in and guessing at passwords. How prevalent scanning of ports is, as soon as you get an IP within 5 min your ports have been scanned and they know which ones are open/closed. Server or not.