Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Who Me Too'd this topic

How do I identify which PC made a suspicious DNS query?

L4 Transporter

Hello

 

I have setup the Anti-Spyware Profile in our firewall and I have a lot of threat logs of type spyware suspicious DNS  queries from a domain controller machine and this is cleansed.

Monitor > Logs > Threat list

sinkhole.jpg

As you can see I have configured the sinkhole method. But I woluld like to know how could I identify which PC are making this suspicious DNS queries?

 

Thks

 

Diego 

 

Who Me Too'd this topic