| Event Id | 15112 |
| Source | DNS Intrusion Detection Filter |
| Description | The client %1 exceeded its connection limit. The new connection was rejected. |
| Event Information | According to Microsoft : Cause : The event occurs when ISA Server rejects a connection from a client because its connection limit was exceeded. The event could indicate a flood attack. Resolution : Use the log filter to determine if the source of the connection is legitimate or the result of a flood attack. To do this, in the console tree of ISA Server Management, on the node for the server, click Monitoring. In the Logging tab edit the log filter properties to view the source of the connection.If the connection should be allowed, increase the connection limit threshold. To do this, in the console tree of ISA Server Management click Configuration, then click General. In the details pane, select Define Connection Limits, and then use the options in the Connection Limits properites page to increase the number of concurrent connections allowed. |
| Reference Links | Event ID 15112 from Source DNS Intrusion Detection Filter |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.