I have clients running Exchange Server 2003. More than one of them are plagued by (presumably) scripted attempts to log in to their SMTP server, using a long list of common American names.
Please forgive what is undoubtedly a basic question--but can the IPS features in the Cisco PIX 501 be used to fend off an attack like this? And if so, can you point me in the right direction for configuring this feature?
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...