Attempted PMS access by an unknown user…
I have security logs showing IP/Port access to my PMS servers…
The remote IP/Port I do not know…
A lookup of the IP address goes back to some ISP here in the US or overseas…
Thing is it’s not a port scan… seems they knew the external port to use…
They do not show in the PMS logs at all since I stop all unknown remote IP address…
They are not Plex IP’s
But they do keep trying…
Anyone from Plex to comment…
And you know that, because…?
A few to many assumptions, can you share those security logs?
The IP traces back to a local community ISP… usually…
One recently was to Verizon in Wichita KS. listed only as;
| Country | United States |
|---|---|
| Region | |
| City | |
| Organization | Verizon Internet Services |
Also they are not using the public IP/port but a port that was used by another user, that user logged out and it was still in the router as forwarded.
But since I don’t know the IP I stop it from getting to the subnet and the PMS server that it was directed to.
Anyone know a way to change one’s public IP…
with out leaving the router off for days…
I’ve powered down all the servers
Reset all the port forward entries…
What?
Have you done something to attract the attention of the NSA, LOL 
Yea… running Plex… seems to be it…
It’s of matter of National security using Plex, you best be careful going forward 
