I am seeing thousands of IPS blocked attacks (rule 460 and 461) generated by 2001:470:b:*::1, which is the address of utm. The destinations are my computers also using ipv6. These blocked attacks constitute 98% of the blocked attacks. This was reported in the network protection group in this thread. Is this a bug in the rules or is utm generating bad ICMP packets? (The rules are both broken together, at least there are equal numbers of both attacks.)
FYI, I just did a clean reinstallation of 9.100-8 (i.e., from scratch in a new VM) and this issue is still present. If you need any further details, let me know.
From memory the fix is not due for release for at least one or two minor versions. My latest version is 9.100-14 from ISO and the issue still reports out.
From memory the fix is not due for release for at least one or two minor versions.
My latest version is 9.100-14 from ISO and the issue still reports out.
