IGMP flood from Kaspersky Security Center Network Agent [MOVED]

tnoc · May 2, 2020

We noticed in our Data Transmission Network, that our B2C and B2B clients are sending "IGMP Join" messages to some of ip adresses from 239.193.0.0/16 network. It looks like flood. This affects operation of television services in our network, because igmp snooping tables on our switches are overflowing. We have determined that the software using igmp messages is Kaspersky Security Center Network Agent.

Would you be willing to talk to us:
- we noticed this activity about a month ago, did you change something?
- is it a legitimate activity?
- why is your software are sending this messages to multicast ip addresses?

We consider this app activity undesirable and harmful.

tnoc · May 21, 2020

up

charly17 · November 12, 2020

Hi,

We notice the same thing since a couple of weeks.

I cannot find where to configure this behavior, either disable it, or configure it.

Any help appreciated.

thank you

ak01 · November 12, 2020

maybe they are all acting as a distribution point?

IGMP flood from Kaspersky Security Center Network Agent [MOVED]

Recommended Posts

tnoc

Link to comment

Share on other sites

tnoc

Link to comment

Share on other sites

charly17

Link to comment

Share on other sites

ak01

Link to comment

Share on other sites

Please sign in to comment

Forum

Products

Support

Personal Account