Endpoint Protection

 View Only
Back to discussions
Expand all | Collapse all

Current I.P., Historical I.P. & Remote I.P. address in NTP attack logs of SEPM 12.1

  • 1.  Current I.P., Historical I.P. & Remote I.P. address in NTP attack logs of SEPM 12.1

    Posted Jun 22, 2013 01:40 AM

    What is the meaning of current i.p. address, historical i.p. address & remote i.p. address in "Network Threat Protection" attack logs of SEPM 12.1



  • 2.  RE: Current I.P., Historical I.P. & Remote I.P. address in NTP attack logs of SEPM 12.1
    Best Answer

    Posted Jun 22, 2013 01:49 AM

    Current IP Address

    This is the IP address the client has now (or had at the last time it talked to SEPM). 

    Historical IP Address

    This is the IP address the client had when the attack occurred. 

    Remote Host IP

    This is the IP address of the other guy (usually the guy attacked this system)



  • 3.  RE: Current I.P., Historical I.P. & Remote I.P. address in NTP attack logs of SEPM 12.1

    Posted Jun 24, 2013 12:34 AM

    Great Answer Rafeeq...Thanks a lot.