I’ve recently upgraded my network hardware to Ubiquity and am seeing security alerts generating from the NAS.
Threat Management Alert 2: Attempted Information Leak. Signature ET SCAN Non-Allowed Host Tried to Connect to MySQL Server. From: 192.168.1.13:3306, to: 192.168.1.1:42479, protocol: TCP
Looks like it attempts once every 3hrs. I found another post with a similar issue, but the fix was for a different device.
Other topic for reference
I’m using a PR4100, and although I know how to SSH into my device I’m less familiar with Linux.
I’m currently running a grep for “127.0.0.1” just to see if anything hits, but I’m guessing it’s going to take a while to scan.
I’m still running OSv3, and have the following apps running:
-Radarr (in docker)
Any help is appreciated!