Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 696 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Wrong Categories in reports

MMASLOUH

Hello,

i have an XG 230 running on SFOS 17.5.15 MR-15, but it keep show me a wrong category reports.

For example it list the LDAP traffic as P2P app category and "P2P Client Torrent" for application.



This thread was automatically locked due to age.
  • 0

    Hi MMASLOUH, I would suggest upgrading your XG firmware in V18.5 as V17 is EOL and only available for lower-end devices that can not be upgraded to V18.x

    Once you upgrade the appliance to the latest V18.5.x, Please ensure that Pattern updates are latest for "IPS and Application signatures" if any such false alert correction is already taken care of in the latest pattern, you will not observe the issue. In case the appliance is already running with the latest IPS and Application signatures and if it is still giving false detection then this may require further investigation with a support ticket with V18.5 latest version to work on it with the LAB team by collecting the required details and logs. ( PCAP which covers 3-way handshake for any such alerts, TCPDUMP, IPS debug)

    Regards,

    Vishal Ranpariya
    Technical Account Manager | Sophos Technical Support
    Sophos Support Videos | Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link.

  • 0 in reply to Vishal_R

    Hello 

    i can't upgrade to v18.5 because the device is the main FW.

    i will schedule an upgrade at the next months and check later.

    Thanks.

Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?