I need a solution
There are many protecting arp-spoofing logs. ( Monitors - Logs - Network Threat Protection Logs. )
Althogh These attacks are protected by SEP.
But I want to these logs are not happend anymore.
So, What is the next step after arp-spoofing logs appear?
Log information are like below
Time, Event ..... Direction, Local Host IP, Remote Host IP, Current IP..
( what is the different Local Host, Current Host ? )
I don't know, What I should do next.
Anybody some advice to me?
0