Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 3 subscribers
  • Views 3940 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPS drop packages

AreshAreshi

Hi,

we have a customer that uploads some files daily with FTP to our FTP servers.

Today in the daily report I can see that IP of the customer has been logged as top attacker and the destenation is our FTP server.

The rules that drop the connection is:

SERVER-OTHER Flexera FlexNet Publisher stack buffer overflow attempt

Group: Maleware

We did not have this issue in past.

Any idea?



This thread was automatically locked due to age.
  • 0

    Hi Guy's,

    Just to allow customer keep on uploading the files to our FTP server I did create a exception in the IPS and says if the connection comeing from these IPs and useing FTP service and  going to this internal server then disable the IPS for the connection.

    I will you keep you posted if the upload has been sucessful?