I'm trying to work out what vector is causing these authentication attempts to appear on our GroupWise 14.2.2 server:
4DC8 C/S Login Linux ::GW Id=xxxxxxxxxxxxxxx:: 10.0.0.206 [::ffff:10.0.0.206]
The IP address is our server which also hosts webaccess. Could it be mobility trying to use GroupWise auth? I'm struggling to see anything else attempting to hit the server during the same time frame.