We're now on our third round of Trust and Safety locking our Perforce server, claiming it appears to be committing a DoS attack. Every time, I provide the relevant information on our network usage and why it was sending so much data, and they unlock it a few days (or, in one case, weeks) later.

The problem is they wont tell us what is tripping this system. We know it has something to do with pulling a large amount of data. This has happened every time we've setup our project on a new system. Other than that, Trust and Safety won't give us any guidance on preventing this, Support has said it's outside of the scope of support, and we should ask for guidance here.

The server is using the official image off the marketplace, with Tailscale being used to control access.

Any ideas on where to go from here?