Hi,
I'm seeing this logs on our SG 430 9.705-3
2021:02:02-09:57:08 firewall-2 ulogd[12675]: id="2104" severity="info" sys="SecureNet" sub="ips" name="ICMP flood detected"......
2021:02:02-09:58:05 firewall-2 snort[3052]: WARNING: SMTP memcap exceeded.
2021:02:02-09:58:50 firewall-2 snort[3052]: WARNING: SMTP memcap exceeded.
2021:02:02-09:59:34 firewall-2 snort[3052]: WARNING: SMTP memcap exceeded.
2021:02:02-09:59:34 firewall-2 snort[3052]: WARNING: SMTP memcap exceeded.
2021:02:02-09:59:41 firewall-2 snort[3052]: WARNING: SMTP memcap exceeded.
2021:02:02-09:59:52 firewall-2 snort[3052]: WARNING: SMTP memcap exceeded.
2021:02:02-09:59:56 firewall-2 snort[3052]: WARNING: SMTP memcap exceeded.
2021:02:02-10:00:27 firewall-2 ulogd[12675]: id="2104" severity="info" sys="SecureNet" sub="ips" name="ICMP flood detected"......
Looks like it's still working as some blocks are also logged.
What does this mean? Found a very old post hera about the issue but no explanation.
This thread was automatically locked due to age.