I've been scanning the forums for possible help to this delima, but unfortunately I can't find anything exactly like this that's been answered...
2010-01-25 16:22:21.708846500 32593 Accepted connection 0/40 from 24.71.223.10 / idcmail-mo1so.shaw.ca
Any help is greatly appreciated.
Any? Two radical workarounds enclosed.
Alternative viewpoint A: That IP resides in a large range
that *permanently* scans my router ~ done so for YEARS.
Been blocked at the router, forgotten all about them, they
never even get close to SME. Consider doing so similarly.
Alternative viewpoint B:
Don't want to re-programme the router?
This takes your IP off their operational 'radar',
should take you only a minute or two to do...
[make a template]
nano -w /etc/e-smith/templates-custom/etc/rc.d/init.d/masq/40DenyZombies
[edit template ~ single IP or the whole supporting telco and all who sail/spam in her]
/sbin/iptables -A INPUT -s 24.71.223.10/32 -j DROP # waste of space single IP
/sbin/iptables -A INPUT -s 24.64.0.0/13 -j DROP # supporting telco and all of its subscribers
[Ctrl-X then 'Y'es to save and exit]
[expand the edited template]
/sbin/e-smith/expand-template /etc/rc.d/init.d/masq
[restart masquerading]
/etc/init.d/masq restart
Undo by clearing or removing that template
followed by expanding SME's templating
and then a restart of the SME firewall.
...your SME is now off their radar.
They don't stop ~ whatever you do.
Time to start enjoying life more;~)
[PostEdit: typos]