Hello, Maybe attackers identifed a vulnerability on your services in past and trying to access your servers. To be on the safe side checking servers, applications against any kind of vulnerability specially this one should be fine. I recommend; If applications are not required to acces from open world, limiting allowed traffic for specific Geo Locations greatly reduce attack surface and attack possibilites. Applying zone protection profiles can reduce scanning risks. Using, Vulnerability Protection, Spyware and Anti-Virus profile in strict state for the rules. Within great care all vulnerability protection signatures can be enabled. Also auto tagging feature can be used to block all or block for a period of time. attacker ip addreses. Vulnerability Protection> Vulnerability protection profile> Vulnerability Protection Rule> Action> Block-ip as source and how much time (Max is 1hr) this will block source ip address for one hour in hardware level With using DAG feature you can block attacker for a long time. I rec
... View more