Oui, j'ai besoin d'une solution
Default Rule
automaticeally block an attackers ip address in symantec endpoint protection client
number of seconds during which to clock the ip address"-600
afte hit the site i get below mention error
http://www.yashwanthindustries.com/
[side:26591] we attack red explokit kit redirect 2 detected
the client will block from ip address 172.*.*.*
for next 600 seconds(from date */*/* time 1:24 date 1/*/* 1:34 )
symantec support suggesting me to disable one firewall option ( Enable denial of service detection ) but i don't think so it is best practice.
