Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
276
Views
0
Helpful
1
Replies

Shunning Problem

rod.blackie
Level 1
Level 1

‎08-06-2009 11:17 PM - edited ‎03-11-2019 09:03 AM

Hi netpro's

I have a pix 515 running os 8.2 and I have an ISA server on my inside LAN which redirects HTTP traffic to an ISA server in my DMZ, which then forwards out to the internet.

I came in this morning and the PIX was shunning all traffic from the inside ISA to the DMZ ISA which meant all HTTP traffic was dropped.

Does this mean I have intruder on my inside network carrying out some kind of scanning attack?

Any help or pointers would be appreciated?

Thanks

Rod

Labels:
0 Helpful
1 Reply 1

Yudong Wu
Level 7
Level 7

‎08-07-2009 11:35 AM

Check your PIX log to see if you can find anything.

It was most like shunned by threat-detection. So check the following commands as well.

show threat-detection scanning-threat

show threat-detection shun

show threat-detection statistics host

show threat-detection statistics port

show threat-detection statistics protocol

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card