On Thu, 11 Apr 2002, Matthew Carpenter wrote: > According to Cisco, this is caused by a config mistake, which is resulting > in a request being sent to the same NIC. I realize that ICMP type 8 are ECHO > requests, so is this just a message type that can be filtered out? >
I'm not familiar with the cisco documentation refered to here, but, it might well depend upon if you own both the addresses in the log: src outside:208.185.54.14 dst outside:208.249.103.99 It would mean, if I understand you correctly, you have the same nic ifconfig'ed for two networks? Else, this is not a single nic issue, is it? Thanks, Ron DuFresne > -----Original Message----- > From: Wil Cooley [mailto:[EMAIL PROTECTED]] > Sent: Thursday, April 11, 2002 11:57 AM > To: Matthew Carpenter > Cc: [EMAIL PROTECTED] > Subject: Re: PIX SYSLOG entries > > Also Sprach Matthew Carpenter <[EMAIL PROTECTED]> on Thu, Apr 11, 2002 at > 09:40:52AM PDT > > Should this entry be a concern? > > > > > > > > Apr 11 2002 11:37:59: %PIX-3-106011: Deny inbound (No xlate) icmp src > > outside:208.185.54.14 dst outside:208.249.103.99 (type 8, code 0) > > ICMP type 8 is ECHO REQUEST (i.e., ping). > > Wil > -- > W. Reilly Cooley [EMAIL PROTECTED] > Naked Ape Consulting http://nakedape.cc > irc.linux.com #orlug,#lnxs > > "I go on working for the same reason a hen goes on laying eggs." > - H. L. Mencken > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ "Cutting the space budget really restores my faith in humanity. It eliminates dreams, goals, and ideals and lets us get straight to the business of hate, debauchery, and self-annihilation." -- Johnny Hart ***testing, only testing, and damn good at it too!*** OK, so you're a Ph.D. Just don't touch anything. _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
