I have seen this showing up in the log quit often and don’t quit know what to make of it.
echo: system,error,critical login failure for user 202013iam02019anonymous020214rel\94\AA\16@\94\AA\16@@ via bandwidth-test
Anyone seen this or know about it?
ive seen this before and made a post here about it..
no real responses…do a search.
maybe some kind of scanner trying the port of your bandwith test server…i think you can restrict that to an IP range.
It would be nice to have an action in system logging which would allow a script to be run to check the last log entry and allow a script to add the address to the address list as a restricted address and allow us to block.
Someone tryied to establish connection with your routeing by ‘bandwidth-test’ option.
‘tool bandwidth-server set authentication=yes’ forces to use authentication,
moreover you can block unauthorized access for router by adding rules to ‘chain=input’, if you want to avoid the following issue.
“Good security” implies you do the opposite. Only permit certain addresses access to bandwidth-test server.