Scenario: An attacker knows the user name of the company and runs a "account lockout DoS attack" on the external webmail page of the company. So he tries to lock all user accounts via the webmail page.
Solution to TMG: With help of an additional tool: After 3 incorrect logins, the tool attempts to block the IP of the potential attacker (the AD account is locked after 5 failed logins).
Is it also possible with Kemp ESP?
Kind Regards