Intrusion Help !!

[sector876 at gmail.com (Michael Allen)]

106020: Deny IP teardrop fragment (size = 552, offset = 0) from source ip to
destination ip

Description: "Someone is attempting to spoof an IP address on an inbound
connection. Unicast Reverse Path Forwarding, also known as reverse route
lookup, detected a packet that does not have a source address represented by
a route and assumes it to be part of an attack on your PIX Firewall."

I received several of these alerts recently and noticed that it brought the
network to a halt. How do I track the guy behind this? The guy seems to be
hopping all over the place.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20100426/840bb05e/attachment.htm