I have a strange problem which looks to me like a DOS attack from the inside..but I cant be sure.
All xlate connections used within hours.
Xlate connections start with all our servers across our WAN before moving onto all workstations.
No viruses have been found.
Looked in syslog and I cant find one single outside IP that seems to be a possible source.
Any ideas? My eyes hurt.