Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 14 replies
  • Subscribers 2 subscribers
  • Views 11624 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

C2/Generic-A FP

PhilB_01
Hi,

C2/Generic-A triggered when I was trying to talk to a VPS that we have rented off-net (and which we've been renting for the best part of a year at this point, but which I guess I only just tried to talk to from behind a sophos UTM).

How can I get the false positive removed from the database?

Phil


This thread was automatically locked due to age.
Parents
  • 0
    In http.log there is nothing at that time from my IP: 

    2015:06:16-05:36:51 astaro1-2 httpproxy[6491]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="POST" srcip="192.168.1.9" dstip="" user="" ad_domain="" statuscode="404" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2533" request="0xbda11000" url="passthrough.fw-notify.net/.../537.78.2" exceptions=""

    2015:06:16-05:36:52 astaro1-2 httpproxy[6491]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="POST" srcip="192.168.1.9" dstip="" user="" ad_domain="" statuscode="404" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2533" request="0xdd2d5800" url="passthrough.fw-notify.net/.../537.78.2" exceptions=""

    2015:06:16-05:36:53 astaro1-2 httpproxy[6491]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="POST" srcip="192.168.1.9" dstip="" user="" ad_domain="" statuscode="404" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2533" request="0xbe16e000" url="passthrough.fw-notify.net/.../537.78.2" exceptions=""


    Don't know why something can't be found, but something unrelated I'd say.

    James.
Reply
  • 0
    In http.log there is nothing at that time from my IP: 

    2015:06:16-05:36:51 astaro1-2 httpproxy[6491]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="POST" srcip="192.168.1.9" dstip="" user="" ad_domain="" statuscode="404" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2533" request="0xbda11000" url="passthrough.fw-notify.net/.../537.78.2" exceptions=""

    2015:06:16-05:36:52 astaro1-2 httpproxy[6491]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="POST" srcip="192.168.1.9" dstip="" user="" ad_domain="" statuscode="404" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2533" request="0xdd2d5800" url="passthrough.fw-notify.net/.../537.78.2" exceptions=""

    2015:06:16-05:36:53 astaro1-2 httpproxy[6491]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="POST" srcip="192.168.1.9" dstip="" user="" ad_domain="" statuscode="404" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2533" request="0xbe16e000" url="passthrough.fw-notify.net/.../537.78.2" exceptions=""


    Don't know why something can't be found, but something unrelated I'd say.

    James.
Children
No Data