I have problems with IPS in UTM, the UTM handles IPSEC traffic with VEEAM backup and Replication, and triggers this:
from which log files is that error?
"A Network Trojan was Detected" isnt that kind of warning which you should ignore and easly add an exception for it. =/
Sometimes it can help to restart the IPS module cause some exceptions only will be used after the affected for new connections I believe.
From IPS log:
Triggerede ADv. protection alerts
Best regards Martin ;-)
Sophos UTM Certified Engineer v9.7Sophos XG Certified Architect v18.0Homelab: 2 x SG210 XG v18 (HA A/P) - 3xAPX530 - 1 x SG210 v9.7 - 1 x UTM 220 v9.7 - 1 x SG135 v9.7 (All Fullguard Plus licenses)