I have seen several posting that port attacks logged on user's computers come from the router, but the IP address that the attack is coming from is an internal IP. I cannot ping the IP, it loads nothing in the browser, nor can I SSH into it. How do I find out what this device is that is port attacking only 1 spefiric user? I am unsure if I can trust it or not. Do i trust it and put in an exception because it is coming from an internal IP?