Hello,
When I check the server for brute force attack, in the IP section it shows the IP of our server, and in the Authentication Service section it shows dovecot, country LT, although the server is not even in this country.
Can someone explain why it shows the IP of our server?