My System log (Sophos XG310, running 18.5.2 MR-2-Build380) is filling up with messages like these:
2022-01-21 15:03:41 IPSec Failed parsing IKE header from 45.189.204.1[17425] failed
2022-01-21 15:03:31 IPSec Failed parsing IKE header from 45.189.204.1[10306] failed
They're coming in every 5 to 10 seconds. The IP address (45.189.204.1) is not one of mine. I have no idea who it is.
Here's what DOESN'T work. I have an active firewall rule at the very top of the list with a Drop action for Source zone: WAN, Source networks and devices: 45.189.204.1, Destination zone: Any, Destination networks: Any, Services: Any. Since activating the rule, there are no hits on it recorded in the Firewall log, but entries in the System log described above continue.
What am I missing?
This thread was automatically locked due to age.