Support Center > Search Results > SecureKnowledge Details
Can IPS protection "Repetitive SMTP Login Failures" be triggered on locally managed SMB appliances? Technical Level
  • Although the logs show failed SMTP logins, the "Repetitive SMTP Login Failures" IPS protection is not triggered on locally managed SMB appliances.

The protection is triggered when there are more than 100 login failures during a period of less than 5 seconds. It works for ports 25 and 587, as well.

Currently, there is no option to edit the threshold or tune any other configurations for this protection in these appliances.

This solution has been verified for the specific scenario, described by the combination of Product, Version and Symptoms. It may not work in other scenarios.

Give us Feedback
Please rate this document