Unwanted Vrack traffic from inside OVH
... / Unwanted Vrack traffic fr...
BMPCreated with Sketch.BMPZIPCreated with Sketch.ZIPXLSCreated with Sketch.XLSTXTCreated with Sketch.TXTPPTCreated with Sketch.PPTPNGCreated with Sketch.PNGPDFCreated with Sketch.PDFJPGCreated with Sketch.JPGGIFCreated with Sketch.GIFDOCCreated with Sketch.DOC Error Created with Sketch.
Question

Unwanted Vrack traffic from inside OVH

by
RoelofV
Created on 2019-05-03 19:04:55 (edited on 2024-09-04 14:25:07) in Dedicated Servers

I have all machines attached to the fail-over IP. So they are not connected to the main IP and can't be reached (i hope) from that IP.
I have enabled the OVH firewall on the fail over IP too and blocked ssh (22) network traffic.
I thought i was save but now i noticed a lot of ssh log in attempts on 1 of the VM's and when i check the originating IP-address they all seem to be OVH IP-adresses.
I have enabled the firewall of my own OS on this particular machine, but i don't understand why this traffic could reach my server(s) in the first place.

Anyone who knows or can explain ?


Replies are currently disabled for this question.