•Product involved: CSS-F
•Product version: CSS-F V001R001C01
Symptom 1: The OSN shared using the NFS can be pinged but cannot be logged in to using the given password. The login attempts failed several times and the OSN maps the public IP address 220.127.116.11.
Symptom 2: The OSN is logged in to successfully using SSH after its password is changed using the ISM. It is found that the device that logged in to the OSN last time uses an unauthorized public IP address.
Note: It is found that the IP address is used by a malicious website.
Symptom 3: When the OSN is being logged in to using the SSH after its password is changed using the ISM, the prompt asking you to enter the password is displayed after seven seconds. After the route
command is run on the OSN, items in the routing table are slowly printed every 3 to 5 seconds. This problem persists after the network and the OSN are restarted.
Symptom 4: After the tcpdump -i bond0 -n not port 22 command is run to check details, it is found that packets are sending to all related ports. The OSN maps the public IP address 18.104.22.168.