Hello all, When I use Microsoft NetMeeting though my Cisco PIX firewall, I found the following records in my Syslog:
106012: Deny IP from x.x.x.x to y.y.y.y, IP options: "0x14" 106012: Deny IP from x.x.x.x to y.y.y.y, IP options: "0x14" ...... IP Option 0x14 is a router alart option, according to http://www.iana.org/assignments/ip-parameters. In Sniffer, I successfully captured that packet, it said "IP: Unknown option 148", and the packet is a RSVP packet. In PIX document, Cisco's explaination for alarm 106012 is "An IP packet was seen with IP options. Because IP options are considered a security risk, the packet was discarded.". My first question is that how I can disable RSVP in NetMeeting? (I know I'd better post this question on Microsoft's BBS, but just in case, somebody here knows the answer as well...) My second qustion is that how I can enable PIX to forward IP packets with options? Will it be a big threat to the network security? Thanks for all of your help in advance, Fei. _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] For Account Management (unsubscribe, get/change password, etc) Please go to: http://lists.gnac.net/mailman/listinfo/firewalls
