Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Bizarre traffic on X700

Status
Not open for further replies.
starfish09

starfish09

MIS
Sep 1, 2008
9
US
I noticed that our clients domain showed up on two blacklists today. I checked out the traffic monitor on their X700 and I'm seeing a lot of bizarre traffic. This is what I see: firewalld[127]: allow in eth0 tcp 20 port 25 as destination syn Filtered SMTP as rule. So I guess I'm translating this as their firewall is allowing in traffic on PORT 20 from random IP address on the outside world to port 25 on our clients public IP. Is someone getting bombed with spam on our clients network? If our clients started showing up on blacklists, I would think that the source IP would be someone on the inside and the direction would be out instead of in?? Please help. I have a feeling something very bad is going on here.
 
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
267
Sameer258
Sameer258
Russtoleum
  • Locked
  • Question
SW GVC won't route traffic through sonicwall to offsite tunnel unless it leases an ip on the same su
Replies
1
Views
91
Russtoleum
Russtoleum
PauS0n
  • Locked
  • Question
Need Help On Cisco ASA 5512 Running Version 9
Replies
0
Views
89
PauS0n
PauS0n
mcisar
  • Locked
  • Question
Disable CHAP on PPPoE WAN connection
Replies
0
Views
97
mcisar
mcisar
cbsarge
  • Locked
  • Question
SonicWALL Mobile Connect on Chromebooks
Replies
1
Views
117
jcarmichael1203
jcarmichael1203

Part and Inventory Search

Sponsor

Back
Top