IPS is slowing down internet speed and causing Packet-loss on WAN interface
Hello Community, We have a UTM SG430 and 1GBit/s internet connection. Now I have noticed that IPS a. prevents the line from being fully utilized. b. Long response times (100ms-500ms) and even packet loss occur when the WAN interface is heavily utilized…
IPS, the firewall,RED networks, and bypassing for MSFT IPs.
Hello all,
May be a silly question, however, in the IPS service:
Do we need to include the RED networks for remote offices as well? Similarly, do they (RED networks) need to be listed in the Firewall rule for Teams and the like:
Finally, besides…
Intrusion Prevention Alert (Packet dropped)
Hi guys, I keep getting the following alert and just wondered if it was anything to worry about / look further into:
Intrusion Prevention Alert
An intrusion has been detected. The packet has been dropped automatically.
You can toggle this rule…
RE: Concurrent Connection issue still in 9.350-12
Scoreboard is Full
After going through countless logs I kept finding logs pertaining to “scoreboard is full”. I started seeing this log when we started to see large amounts of traffic on the utm.
FYI: I currently utilize WAF and IPS on the utm.
…
Lots of IPS attacks lately One CNC Trufflehunter cant find much info on it (False Positive?)
We have been getting a LOT of IPS attacks lately. Getting Snort 38330 MALWARE-CNC TRUFFLEHUNTER SFVRT-1020 attack attempt from several internal IPs. Snort doesnt give much information.... is there a good chance these hosts are infected? Sophos Cloud AV…