I've been getting tons from all over the world over the last week or so. Multiple machines hitting me on a continual basis. Appears to be coordinated among an associated group of bots. One will attempt a string of connections, then it will drop off and another will pick up, then another, etc... Never two different origins at the same time as would be expected if it were more random large scale scanning. None are successful in connecting but it's killing my logs with 10,000s of attempts cluttering things up. Asus router logs appear as follows (nothing special about the origin IP, just one of many as an example): Sep 18 02:28:21 [myhostname] vpnserver1: 220.127.116.11:80 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Sep 18 02:28:21 [myhostname] vpnserver1: 18.104.22.168:80 TLS Error: TLS handshake failed Sep 18 02:28:21 [myhostname] vpnserver1: 22.214.171.124:80 SIGUSR1[soft,tls-error] received, client-instance restarting Changed my IP and they continue. I've checked everything that I can check and I see nothing beaconing out. In fact, I can pull the plug on everything on the inside of my network and change IPs and they continue so I'm pretty much sure of that. So must be just random at least across my ISP's network if not larger. This is my personal network so no reason why anyone would be hitting it in any kind of directed attack against a business, etc. Anyway, just curious whether it's just me/my ISP or if it's more widespread.