Hi, On 5.206, I have a PF rule to drop Netbios, etc, without logging.
However, I am seeing lots of port tcp 445 connection attempts in our logs.
The ones that are getting logged seem to have DEST IPs for which there are no machines assigned.
I.E. it seems to correctly drop the packets w/o logging if they were destined for one of our servers, but if they were destined for an IP which we aren't currently using, they get logdropped.
Thanks,
Barry
This thread was automatically locked due to age.