Contains tips for configurators working with Aware IM
#43769 by PointsWell
Mon Jun 26, 2017 2:54 am
I don't know if this is the best place to put this but it's not a question so I figure here it should be.

Having spent this morning investigating why my server keeps crashing out after it has been running for a week, I started having a look at the tomcat logs for the days when it hasn't been being used (and to understand why my server usage bill has shot up). I have come to realise that there are some comrades in Russia and China who are overly interested in my Tomcat manager.

Given that I have no actual users at the moment, none of these are friendly, so I have done whois checks and blocked their entire IP range, which I now share for others who want to block update their firewalls.


Updated Below
Last edited by PointsWell on Tue Jun 27, 2017 2:41 am, edited 1 time in total.
#43770 by PointsWell
Tue Jun 27, 2017 2:40 am

Code: Select all5.101.0.0/18
#45789 by ACDC
Mon Dec 04, 2017 11:09 am
I am having similar problems

Did you add these settings to the tomcat settings ?
#45790 by PointsWell
Mon Dec 04, 2017 11:32 am
There is something you can set in Tomcat to bounce repeated unsuccessful attempts from IP addresses but I didn’t know how to do it.

I have set the firewall on my google server to deny those IP ranges - so the traffic isn’t getting as far as Tomcat.

Downside is I have to monitor the Tomcat log.

Who is online

Users browsing this forum: No registered users and 3 guests