How do I report a false positive botnet?

 An alert was received from the SonicWall firewall with the message "Suspected Botnet responder blocked". Verifying manually, the public IP address which was blocked by the Botnet Filter is actually safe for my network. How can I work-around the blocking?

1. Login to your firewall and navigate to Manage | Security Services | Botnet Filter
2. Click the highlighted text "Botnet IP Status Lookup".
   
   
   
3. You will be redirected to the page: IP Reputation Lookup
   
   
4. Choose Botnet, You can also report GEO IP location and Spam on the same page.
   
5. Click on To submit requests for status to be reviewed, please click here
   
   
   
6. Please fill in the details.
   
   
   

Add a temporary exclusion on the firewall:

1. Navigate to Network | Address Objects:
2. Create the appropriate Address Object. In our example we will add the Public IP address "62.149.128.15" and associate it with the WAN zone.
   
3. Network | Address Objects | Address Groups | Default Geo-IP and Botnet Exclusion Group | Edit:
   Click on Edit of the Address Group "Default Geo-IP and Botnet Exclusion Group" and add the IP address you wish to bypass the Botnet Filter.
   In our example we will add the Public IP address "62.149.128.15" to the Group and click on OK.
   
   
   
4. Navigate to Security Services | Botnet Filter:
   Ensure that the Address Group in Exclusion is "Default Geo-IP and Botnet Exclusion Group".
   The IP address will now be excluded from the Botnet Filtering, while the submission is being analyzed by SonicWall.