Hi everyone I get a lot of access attempts from ports 110 to very high ports on my two public IP addresses. I don't have a POP3 server running on the gnat box, nor do I have inbound filters configured for port 110. Could it be that trojans or hackers use 110 as their destination port in order to camouflage something?
Thanks for any help Marc 04-10-2001 16:22:09 Local1.Warning 10.0.0.23 Oct 4 16:26:05 FILTER: Remote access filter blocks: TCP ep0 [172.26.140.8/110]->[XXX.XXX.XXX.XXX/22453] l=0 f=0x4.
