Hello, we have a few servers where the security logs shows repeated brute force login attempts via RDP... shouldn't the IPS block these kind of "attacks" by default?
Certificate based Login don't stop Brutforce Attacks. You should use a TS Gateway that you can Publish over a Firewall that can Filter RPC over Https Traffic with preauthentication.
At the Moment the Astaro / Sophos UTM did Not Support this scenario. I think this Feature is on the Roadmap for the Future.
Currently the only Solutions that support this scenario is a Microsoft TMG Appliance or the Microsoft UAG.
Certificate based Login don't stop Brutforce Attacks. You should use a TS Gateway that you can Publish over a Firewall that can Filter RPC over Https Traffic with preauthentication.
At the Moment the Astaro / Sophos UTM did Not Support this scenario. I think this Feature is on the Roadmap for the Future.
Currently the only Solutions that support this scenario is a Microsoft TMG Appliance or the Microsoft UAG.
