ICMP Pings exceeded from IP
This event will be displayed when the number of ICMP Echo Requests (Pings) from a specific station exceeds the value set in the Expert Thresholds (network Tab).
The count is the number of times the configured value was exceeded over 1 second intervals. The maximum value (per second) observed is also displayed.
Someone at the indicated IP address is either:
A legitimate user running a program that uses ping to scan for IP addresses for purposes of hardware discovery.
A malicious user is running similar software in and effort to gain unauthorized access to the network.
Your system could be under an "ICMP flood" denial of service attack.