Hi guys, I am fairly new with UTM and there was an issue(their log files are 100%) with one of our clients which was resolved by a Sophos Support.
Here is what she said she did (yes the support is a female).
>Found out that the packetfilter and working logs were greater than 50 GB each and hence were causing the log file partition to be filled up.
>So, we moved the file to /var/storage directory and after that log partition came down
>We cleared that file as well so now the root partition seems to be down.
>But it seemed like heavy packet dropping was occurring for port 445 so we created a drop rule to block that communication without logging it.
Im pretty sure they did it using SSH. Can you please tell me how did she do it? Especially the linux commands because I am really not that familiar with linux.
Should i login as 'loginuser' then switch to root first before I can input the command lines?
Thank you in advance guys!
This thread was automatically locked due to age.
