Public forums - Post new message

Testing Xeams as a Stand Alone server, the intrusion log has a few attempts to brute force, but the IP's show as coming from my router, instead of the attacker's IP:

2018-05-10 07:14:17,797 - User blocked for attempting too many incorrect passwords. IP address:192.168.1.1. Source: Smtp Server. Attempt number 33. Login: noreply
2018-05-10 07:59:35,634 - User blocked for attempting too many incorrect passwords. IP address:192.168.1.1. Source: Smtp Server. Attempt number 34. Login: student
2018-05-10 08:22:44,976 - User blocked for attempting too many incorrect passwords. IP address:192.168.1.1. Source: Smtp Server. Attempt number 35. Login: ftpuser
2018-05-10 08:45:53,766 - User blocked for attempting too many incorrect passwords. IP address:192.168.1.1. Source: Smtp Server. Attempt number 36. Login: besadmin
2018-05-10 09:09:03,491 - User blocked for attempting too many incorrect passwords. IP address:192.168.1.1. Source: Smtp Server. Attempt number 37. Login: internet
2018-05-10 09:31:51,675 - User blocked for attempting too many incorrect passwords. IP address:192.168.1.1. Source: Smtp Server. Attempt number 38. Login: user1


How do I get their IP's to appear in the log properly?

Community/Enterprise Edition

Replying to a message from: John