Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net. The EventId.Net for Splunk Add-on assumes that Splunk is collecting information from Windows servers and workstation via the Splunk Universal Forwarder.
|Source: Microsoft Firewall|
ISA Server detected a spoof attack from Internet Protocol (IP) address <IP address>. A spoof attack occurs when an IP address that is not reachable via the interface on which the packet was received. If logging for dropped packets is set, you can view details in the packet filter log.
|English: Request a translation of the event description in plain English.|
See the link to "EventID 15108 from source Microsoft ISA Server Control" for details on this event.
|Private comment: Subscribers only. See example of private comment|
|Links: EventID 15108 from source Microsoft ISA Server Control|
|Search: Google - Bing - Microsoft - Yahoo - EventID.Net Queue (0) - More links...|
Send comments or solutions
- Notify me when updated