Hello. I'm intermittently receiving a spoof attack warning from an IP that is on the internal LAN or from a VPN client, have done some reading but none of the criteria match. Anyone seen this scenario before? Ta.