I am seeing some repeated ALERT events on our IPS firewall (Sonicwall). I’m seeing IP spoof dropped and possible port scan detected from the same IP addresses. Is it possible to contact the service provider of these IPs? I realize that the firewall is “doing its job” by alerting me and dropping these attacks, but should I take any further steps to protect our network from future spoofing and scans? Any suggestions would be greatly appreciated.