While reviewing logs on the email server I noticed 18.104.22.168 trying to authenticate via SASL.
This is not a normal IP that would be relaying email through the server, so I decided to block it at the firewall.
Undoubtedly, someone was trying to relay spam, whether they were aware or not.
First, I logged into my firewall via ssh to get a rule in place immediately:
iptables -I CHAIN -s 22.214.171.124 -j DROP
Listing the rules:
iptables -L --line-number
1 DROP 0 — ppp-126.96.36.199.revip.proen.co.th anywhere
Shows the new rule at the top of the chain. Exactly where I need it.
I seem to be searching and using the same google result a bunch lately. So here it is:
Changing the IP on Solaris 10 requires editing two files:
3. /etc/netmasks (if subnet mask needs changing)
If you are changing network address, you will need to change the router address in the file:
Changing the hostname now only requires editing these files:
3. /etc/hostname.”interface name”
hostname “hostname” (change until you can reboot)
Thanks to shiv729 at devshed.
Original forum post:
So, say you want one of your Debian based servers to listen on more than 1 IP address. Heres a quick and dirty example of how to do this.
This may or may not be the correct way to do this, but it works on my machines.
Adding an IP to eth0 (usually the default)
If you look in your /etc/network/interfaces file you should see something like this:
iface eth0 inet static