On 3/26/18 3:56 AM, Rob Janssen wrote:
AP-120.StPete.flscg.org[44.98.249.67] AP-240.StPete.flscg.org[44.98.249.68] AP-A-250.tampa.flscg.org[44.98.249.7] W9CR-Mgmt.StPete.flscg.org[44.98.249.76] AP-B-330.tampa.flscg.org[44.98.249.8] AP-C-110.tampa.flscg.org[44.98.249.9]
When you know who owns one of the above systems, please advise them that their router is compromised and that they have to update it.
It's obvious when we have reverse DNS. SWIP/rwhois would make it more obvious, but nothing's going to change with ARDC ever.
We don't have routing enabled on any mikrotik's (they are pitiful routers), and the management subnet is blocked from the internet at large (44/8 is open to it). I forwarded this to our tech committee, and we'll schedule an upgrade sometime this week.
73s