windows 2003 file server, it is our WSUS server, and our symantec endpoint server, running managment 12.1
have 12.1 client installed, today noticed popups about network threat protection, saw it was blocking traffic from various PCs, but when I look at the network threat protection logs it doesnt tell me why!
how do I find out what is going on?
here are a few samples, where 192.168.xx.x is our endpoint server.
216569 8/23/2011 2:15:12 PM Blocked 15 Outgoing ETHERNET [type=0x806] 192.168.zz.40 00-0B-6B-B3-94-43 0 192.168.xx.x 00-1C-23-D0-8E-1E 2054 Default 1 8/23/2011 2:14:11 PM 8/23/2011 2:14:11 PM Block all other traffic
216570 8/23/2011 2:15:22 PM Blocked 15 Outgoing ETHERNET [type=0x806] 192.168.zz.51 00-0B-6B-B3-84-43 0 192.168.xx.x 00-1C-23-D0-8E-1E 2054 Default 1 8/23/2011 2:14:21 PM 8/23/2011 2:14:21 PM Block all other traffic
216571 8/23/2011 2:15:27 PM Blocked 15 Outgoing ETHERNET [type=0x806] 192.168.zz.61 N/A 0 192.168.xx.x 00-1C-23-D0-8E-1E 2054