On my firewall logs, I am getiing hits counts like tcp/0 and udp/0 from internet as well as my remote location.
but i am not understand that for which purpose the tcp/0 and udp/0 is used.
As per my knowledge 0 is well known port.
if anyone having idea on this pls suggest me.
Those logs could be part of an authentication like I mentioned, or could be traffic that is flowing through the ASA.
Who is sending the logs, the ASA?
What severity are these logs? Are they just informational or critical?
This could be normal traffic or not, in order to find out, we need to know if that traffic showing on the logs is supposed to go through the ASA in the first place.
A configuration will help.