Security Basics mailing list archives
Strange response from PIX
From: "dissolved" <dissolved () comcast net>
Date: Wed, 29 Jun 2005 20:47:41 -0400
Hi all,
From the DMZ (1.0), I ran an nmap scan (-sA switch) towards the subnet my
PIX protects (192.168.2.0 /24). I ran a sniffer while doing this, and noticed the PIX responded with an ip of 10.89.112.1 I dont have a class A scheme. Why is this 10.88.112.1 address showing up from the PIX? 05:10:05.232940 IP (tos 0x0, ttl 254, id 39360, offset 0, flags [none], proto: ICMP (1), length: 56) 10.89.112.1 > 192.168.1.5: ICMP host 192.168.2.1 unreachable - admin prohibited filter, length 36 thanks
Current thread:
- Strange response from PIX dissolved (Jun 30)