05-07-2025 08:53 AM
We have a process that sends MSSQL (1433/tcp) to a cloud service that occasionally just stops working - so trust to untrust. It is mostly on 'larger' data transmissions. Turned off all the flood protection in the zone protection profile on the outside interface, and there is no issue.
Can I see where that is being triggered? Any thoughts on changes to thresholds?
05-07-2025 09:18 AM
Most likely you either hit limits on "Flood Protection" tab or on "Reconnaissance Protection" tab.
You can add source IP (where process runs) into "Source Address Exclusion" list on "Reconnaissance Protection" tab.
Assuming your internal zone is "INSIDE" you can start the process and then run command "show zone-protection zone INSIDE" to see current rate of Zone Protection counters for the zone.
05-07-2025 09:39 AM
Thank you. I am working with the team having the issue and seeing if it is Flood or Reconnaissance protection I am hitting. Turned off SYN and Other IP on Flood for now.
05-09-2025 08:40 AM
Hello,
I hope that the traffic is over a VPN tunnel? Otherwise youre sending data over the internet in plain text almost.
Regards,
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
