Hi, I've a very very weird thing happen to me today and I wonder if anyone
could explain it!
A customer received a large phone bill from their Telco, because of calls to
their ISP from a Cisco 800 router. The router interfaces and Ethernet LAN
and an ISDN line and has a very basic configuration - a single dialer.
I removed the router from the LAN and found it to still be triggering it's
own calls to the ISP. I ran debug ip packet (Det) on it and found it to be
reacting to a request from a public IP address. Obviously this must be
stored on the router somewhere - but I cannot explain it.
The router is NOT running any routing protocols, it has no static NAT and is
filtering NETBIOS traffic! The inside address is 10.10.10.x and the ISP
dialer's IP address is negotiated.
I reloaded the router and hey-presto the problem went away!! But for how
long?? Could this be a result of a hack?