Hello, everybody.
I have a ClusterXL with R81.10 version.
Currently, we have 1 IP from a server in our LAN, which seems to be having "malware problems, or some virus", because in the AV and Anti-Bot blades from the SmartConsole, the following is observed.
We want to be "sure" that ClusterXL is "blocking" this traffic from this server.
The "PREVENT" action can "give us that peace of mind" that the traffic is being blocked, or do we need to check something else in the Firewall?
These are some reference images.
I hope you can help me with any comments.
Thank you.