Can IPS protection "Repetitive SMTP Login Failures" be triggered on locally managed SMB appliances?
The protection is triggered when there are more than 100 login failures during a period of less than 5 seconds. It works for ports 25 and 587, as well.
Currently, there is no option to edit the threshold or tune any other configurations for this protection in these appliances.
This solution has been verified for the specific scenario, described by the combination of Product, Version and Symptoms. It may not work in other scenarios.