ICMP (dup) message

Unanswered Question
Apr 10th, 2008
User Badges:

We just migrated a bunch of in-bound access rules from a Netscreen to a PIX 515 (v7.2). When several Linux servers ping devices on the internet they get back icmp (dup) messages. These hosts have the PIX set as their default gateway.

Has anyone seen this? Is there something on the PIX that we can do to supress the icmp (dup) replys?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
mvhurley9 Thu, 04/10/2008 - 20:57
User Badges:

An additional comment on this. The devices that see these icmp (dup) messages have static translations and acl rules allowing in-bound connections. Other Linux devices on the local that do not have the statics and acls don't get the dups.


This Discussion