Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
1121
Views
0
Helpful
1
Replies

denied statements : port tcp 59150 and psh ack

JMCNEL
Level 4
Level 4

ā€Ž09-24-2010 08:21 AM - edited ā€Ž03-11-2019 11:44 AM

I am trying to find why we would received the following statement every couple of seconds. It does not make sense ?

2|Sep 24 2010|09:35:08|106001|visual link IP |25|x.x.x.x|59150|Inbound TCP connection denied from x.x.x.x/25 to x.x.x.x/59150 flags PSH ACK  on interface OUTSIDE

traffic is allowed on port 25 from that server. what could this error imply?

any ideas?

Labels:
0 Helpful
1 Reply 1

praprama
Cisco Employee
Cisco Employee

ā€Ž09-24-2010 08:33 AM

Hi,

Here's when that error comes.

http://www.cisco.com/cgi-bin/Support/Errordecoder/index.cgi?action=search&locale=en&index=all&query=ASA-2-106001&counter=0&paging=5&links=reference&sa=Submit

It looks like the connection entry from the server on port 25 to the host on port 59150 is being torn down and after that the ASA is getting a TCP packet with flags PSH,ACK set. So, as the ASA does not have a connection entry for this connection, it denies it.

If this is the case, you should see logs saying "Built TCP connection" and "Teardown TCP connection" between these 2 hosts prior to this message in the logs. Let me know if this helps!!

Thanks and Regards,

Prapanch

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card