I have AMP and IDS enabled (MX85) however I have never seen a single log in the security centre for three years! Support desk have not given any solution they just say try disabling and re-enabling these features but it never works.
Any ideas why I am not seeing any logs for this?
Solved! Go to solution.
Try enabling all filters.
Hey @StarBlink ,
Do you see any events if you run some DNS lookups on a downstream client to any .top domain? E.g. test[dot]top.
If not, please update your case so Support is aware and then can triage on their end.
Cheers,
Connor
That test will only trigger an alert if the ruleset is set to Security if I'm not mistaken.
Also what ruleset are you running at the moment ? ( Connectivity , Balanced , Security ( the highest ))
Balanced yes. OK makes sense now...
Try enabling all filters.
Thats done it. Thanks