Posted inLinux
How to trace source, destination IP addresses and ports using tcpdump
Today I just has been alerted that there are too many 'Relay access denied' in my mail server. It is not normal. It must be any clients/workstations infected by viruses and try to relay to my mail server.