Firewall Wizards mailing list archives

Re: Cisco Firewall... PIX

From: Eric Vyncke <evyncke () cisco com>
Date: Sun, 03 Jun 2001 00:08:11 +0200

The IP protocol 105 is definitively the protocol type used by PIX fail-overmechanism.


-eric

At 11:28 29/05/2001 -0500, Brown, Frederick wrote:

Hi Everyone...

      Lately I have been seeing this log entry in my IDS report and was
wondering if anyone has encountered this before. I believe it is a
configuration problem with my PIX firewalls during fail over but I am not
sure. Any comment or suggestion to fix this problem will be greatly
appreciated

127.0.0.1 > 1.1.1.2
16:10:45.814961 127.0.0.1 > 1.1.1.2:  ip-proto-105 10 (ttl 254, id 72)
16:42:45.897010 127.0.0.1 > 1.1.1.2:  ip-proto-105 10 (ttl 254, id 24957)
16:49:15.913219 127.0.0.1 > 1.1.1.2:  ip-proto-105 10 (ttl 254, id 35958


Frederick A. Brown
Computer Security Specialist
IS-A Security
Brownfred () aafes com
Phone: (214) 312-3683   Fax: (214) 312-2658
ARMY & AIR FORCE EXCHANGE SERVICE (AAFES)
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

Re: Cisco Firewall... PIX Eric Vyncke (Jun 02)