I'm seeing quite a lot of hits on Apache HTTP Server mod_rpaf x-forwarded-for Denial of Service when IPS is enabled on my Wan to Lan.
On the LAN there is a webserver sitting with a public IP and the XG is in bridge mode.
This particular site is behind cloudflare, could this be the reason I'm seeing this fairly high amount of hits, or could this be a genuine attack?
How to know and to distinguish?
Thank you
This thread was automatically locked due to age.