Tons of UDP denies for multicast traffic--Urgent

Answered Question
Apr 24th, 2009

All,

I have a TON of traffic that's being logged to my syslog server from an ASA that's not even in production yet. Is there a way that I can keep these messages from being logged? The message code is the standard deny message that I need to log. Here's an example:

Deny udp src INSIDE:GO-VMWARE6/7013 dst identity:239.0.7.7/7013 by access-group "INSIDE" [0x0, 0x0]

Any ideas? These are constant, and I've had about 5000 (just what I tailed out of the log) in the last couple of hours.

Thanks,

John

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
John Blakley Fri, 04/24/2009 - 08:13

What I ended up doing, since the ASA was denying the traffic anyway, was create a deny statement in my acl and then disabling logging to the 229.0.0.0/16 destination. Works well, and now I have to find out why these two servers are multicasting traffic.

Thanks!

John

Actions

This Discussion