- Bronze, 100 points or more
On my ASA 5520 I have an interface that connects to a layer 2 switch for DMZ servers. I regularly get the syslog below whenever the DMZ servers send out a broadcast (which is, of course, quite often.)
What's the best way to make this message go away? Should I just permit the broadcast (even though the ASA won't be able to do anything with it anyways)?
106023 Deny udp src DMZ:10.10.10.58/137 dst Inside:10.10.255.255/137 by access-group "dmz-in" [0x0, 0x0]