If server is not compromised, just edit the smtp configs to deny acceptance from that ip block

 

Why doesn’t the server have an ILO port or something to that effect?

 

 - rh