We just migrated a bunch of in-bound access rules from a Netscreen to a PIX 515 (v7.2). When several Linux servers ping devices on the internet they get back icmp (dup) messages. These hosts have the PIX set as their default gateway.
Has anyone seen this? Is there something on the PIX that we can do to supress the icmp (dup) replys?