Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
398
Views
0
Helpful
3
Replies

Event ID for "Sudden increase of traffic to a port" - MARS

cniblo1975
Level 1
Level 1

‎11-20-2006 01:45 PM

Hi. I'm having trouble with "Sudden increase of traffic to a port" rule not firing. I think there is an issue with the event itself. I'd like to verify the event ID and groups associated with it. Can someone please provide me with this info? Thanks!

Christine

Labels:
0 Helpful
3 Replies 3

vkapoor5
Level 5
Level 5

‎11-25-2006 08:00 AM

did you change status for this original system rule to INACTIVE and now it's just not showing up when you view only the ACTIVE rules

0 Helpful

cniblo1975
Level 1
Level 1
In response to vkapoor5

‎11-28-2006 08:29 AM

Nope, I duplicated it and it blew out the original rule! After I duplicated it, I could no longer find the original one. The rule shows up as a user rule, the duplicate I created. And it doesn't appear to be working.

0 Helpful

cniblo1975
Level 1
Level 1
In response to cniblo1975

‎11-28-2006 11:29 AM

I just realized I posted this under the VPN section. Don't know what I was thinking (wasn't, obviously). I'll repost under general security. Thanks!

0 Helpful
Customers Also Viewed These Support Documents