My firewall has been taking numerous hits from the following site. Do any Aussie users know what this is or what Telstra is up to?

Thanks in advance

[whois.apnic.net]
% [whois.apnic.net node-2]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

inetnum: 61.9.128.0 - 61.9.255.255
netname: TELSTRAINTERNET101-AU
descr: Telstra Internet
descr: Locked Bag 5744
descr: Canberra ACT 2601
country: AU
admin-c: TIAR-AP
tech-c: TIAR-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-AU-TIAR-AP
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20000703
changed: hm-changed@apnic.net 20021213
source: APNIC

person: Telstra Internet Address Registry
address: Telstra Internet
address: Locked Bag 5744
address: Canberra
address: ACT 2601
phone: +61 2 6248 6165
e-mail: addressing@telstra.net
nic-hdl: TIAR-AP
remarks: Telstra Internet Address Registry Role Object
mnt-by: MAINT-AU-TIAR-AP
changed: nobody@aunic.net 19951128
changed: aunic-transfer@apnic.net 20010523
changed: aunic-transfer@apnic.net 20020115
changed: Kushnil@apnic.net 20020813
source: APNIC

It looks like it is one of telstra's users playing around. I guess you could try firing an email off to them with details on what has been happening. Another possibility is that the IP has been spoofed as well, but most script kiddies wouldn't think to do that.

Being a fellow australian, the statement to email to abuse@telstra.com.au (the typical RFC procedure) is not accepted by telstra. You have to jump through hoops of fire to get them to do anything. The last time there was serious issues within the telstra network they only started to fix things when they were about to be completly blacklisted from the various 'net authorities.

So. Either log it and blacklist it on your server. Or start jumping through flaming hoops.