Block traffic sourced from ASA 5540

Unanswered Question
Nov 4th, 2009

Hi Champs,

I would like to know if there is any way to block traffic sourced from an ASA 5540. Basically i am seeing some snnmp authentication failures and the ip address in the message is sourced from ASA. The irony is that i do not have any snmp configured on the firewall as such. Thanks!

Best Regards,

Manoj

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Herbert Baerten Wed, 11/04/2009 - 05:15

Well if you don't have any SNMP configured then the ASA will certainly not send any.

Do you have interface NAT/PAT configured maybe? I.e. the SNMP appears to be sourced from the ASA IP address but in fact it is sources from an inside host which is NAT'ed on the ASA?

If this is the case, you can block the SNMP traffic from the inside host using an interface ACL.

Actions

This Discussion