[Darn it! The PIX actually does it's job! ;-)] I'm trying to scan our DMZ using Nessus. The PIX in front appears to have a charming feature whereby it delays returns RSETs and changes the order of them too. This appears to only kick in if the PIX receives more than one such erroneous packet from a host in a small period of time.
Anyway, it basically means Nessus/nmap and anything else is useless :-( That's good of course - but I still want to know our Internet perimeter area is as secure as we think it is. Has anyone else seen this, and are there ways around it - besides toning down scanners to send one packet per minute - I don't have a spare year to wait for the results... :-) I guess I should be happy... -- Cheers Jason Haar Information Security Manager Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417
