106020: Deny IP teardrop fragment (size = 552, offset = 0) from source ip to destination ip
Description: "Someone is attempting to spoof an IP address on an inbound connection. Unicast Reverse Path Forwarding, also known as reverse route lookup, detected a packet that does not have a source address represented by a route and assumes it to be part of an attack on your PIX Firewall." I received several of these alerts recently and noticed that it brought the network to a halt. How do I track the guy behind this? The guy seems to be hopping all over the place.
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
