Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 19 replies
  • Answers 1 answer
  • Subscribers 11 subscribers
  • Views 59792 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Unwanted traffic originating at UTM

KlausBeulen

Hi all,

since a few days I have a problem with unwanted traffic originating at the external interface of my UTM. It's destination addresses are from 17.0.0.0/8 (Apple?), the traffic seems to be HTTP (port 80), the application is classified as "doof" (see also screenshots):

1) Does anyone have an idea why the UTM communicates with these addresses?
2) How can I block this traffic (I tried a simple FW rule with the external interface as source, and also an application control rule, but both did not block it).

Any idea?

Thanks a lot,
    Klaus.



This thread was automatically locked due to age.
Parents
  • 0

    Very old post - but I stumbled over it while looking for an explanation: I've seen that this is regarding application 'doof' (German word for dumb or silly). Looking at application control I can see that this category is used for 'General browsing and streaming games from online gaming site doof.' Social gaming site. Hope this helps.

    KR

    Andreas

Reply
  • 0

    Very old post - but I stumbled over it while looking for an explanation: I've seen that this is regarding application 'doof' (German word for dumb or silly). Looking at application control I can see that this category is used for 'General browsing and streaming games from online gaming site doof.' Social gaming site. Hope this helps.

    KR

    Andreas

Children
No Data
Unfiltered HTML