I'm using Kerio v2.1.5 and not the newer Sunbelt version. Looking at the log in Kerio I frequently see the following (abbreviated version);
[Date/Time] Rule 'TCP ack packet attack': Blocked in TCP, (null) [IP address:80]->localhost:various ports, Owner: no ownerI looked up ack attack and I'm thinking maybe Kerio is misinterpreting the traffic, or I am. It's always coming from TCP port 80 so is it just web traffic that is being blocked? I have a boat load of adservers etc. blocked in my Hosts file, could that be it?