Hi guys,
I noticed too many IPS logs with Attack name : General Notice, and Attack Information: Internal Error.
Here is a screenshot :
All sources are internal users going to proxy server, placed in DMZ segment of Checkpoint.
I suspect that this log is generated when a user is rejected/denied access to some URL by the proxy.
There are lot of such events, and I am trying to get rid of them, but cannot Add an exception or stop the protection as there is not such in the DB.
Any recommendations?
Thanks,
Dilian