hgj1357
asked on
Router Log - LAN access from remote
My Router log gives me the following informaion:
-------------------------- -----
[LAN access from remote] from 198.175.112.105:41587 to XXX.XXX.XXX:25, Friday, April 03,2009 23:56:08 [LAN access from remote] from 83.240.154.46:19641 to XXX.XXX.XXX:25, Friday, April 03,2009 23:50:05 [LAN access from remote] from 92.80.195.77:1858 to XXX.XXX.XXX:25, Friday, April 03,2009 23:38:54 [LAN access from remote] from 201.236.173.91:13502 to XXX.XXX.XXX:25,
-------------------------- ----
XXX.XXX.XXX is the IP of my SBS2003.
I do not recognize the remote IPs. Should I be worried? Does this mean remote access was attempted or succeeded?
If so, what can I do to stop it?
--------------------------
[LAN access from remote] from 198.175.112.105:41587 to XXX.XXX.XXX:25, Friday, April 03,2009 23:56:08 [LAN access from remote] from 83.240.154.46:19641 to XXX.XXX.XXX:25, Friday, April 03,2009 23:50:05 [LAN access from remote] from 92.80.195.77:1858 to XXX.XXX.XXX:25, Friday, April 03,2009 23:38:54 [LAN access from remote] from 201.236.173.91:13502 to XXX.XXX.XXX:25,
--------------------------
XXX.XXX.XXX is the IP of my SBS2003.
I do not recognize the remote IPs. Should I be worried? Does this mean remote access was attempted or succeeded?
If so, what can I do to stop it?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Check your mail server if is an open relay. Apply latest patches.
Use a more sophisticated firewall (doing smtp inspection) and you are fine
Use a more sophisticated firewall (doing smtp inspection) and you are fine
A surefire way to check to see if your SMTP is restricted properly would be to run a quick SMTP test externally.
Try going to the following link and enter your mail server's address. If your SMTP has been set up correctly, all parts of the test should pass. The results shouldn't be too difficult to interpret, however to be sure please post the test results.
Try going to the following link and enter your mail server's address. If your SMTP has been set up correctly, all parts of the test should pass. The results shouldn't be too difficult to interpret, however to be sure please post the test results.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I was concerned with the router logs than the mail server but the responses were useful
ASKER
I'm I correct in thinking that if the SBS is set up correctly I should be ok?