I am having trouble with RDP through my LAN-to-LAN tunnel and I keep reciving the below message in my log. Do you have any idea what could cause this message and how to fix it?
209005: Discard IP fragment set with more than 1 elements: src = 126.96.36.199, dest = 188.8.131.52, proto = esp, id = 39374
Please note that I have changed the public IPs. The first IP in the log represents the outside IP address of my PIX (6.3 5) and the 2nd one is the outside IP address of the termanating VPN conncetion (6.3 5).
Error Message %PIX-4-209005: Discard IP fragment set with more than number elements:
src = IP_address, dest = IP_address, proto = protocol, id = number
Explanation Too many elements are in a fragment set. The firewall disallows any IP packet that is fragmented into more than 12 fragments. Refer to the fragment command in the Cisco PIX Firewall Command Reference for more information.
Recommended Action A possible intrusion event may be in progress. If the message persists, contact the remote peer's administrator or upstream provider.