Hi folks
I'm new to Astaro and am getting to grips with my new 220G appliance.
I have the IDS running but seem to get sporadic reporting on some of the events. Sometimes if I log into something like MSN Messenger I get a policy message as expected but this does not always seem to be the case.
Also the endpoint is reported as the offender and not the client that invokes the offending application(!) How can I pinpoint individual clients on my network 'abusing corporate policy' i.e. Chat clients, media streaming, etc.
Thanks for any pointers!
Running 6.202, with internal and external interfaces defined, no DMZ yet or S/DNAT MASQ.
Chris
This thread was automatically locked due to age.