10-17-2006 06:52 AM - edited 03-10-2019 03:17 AM
Hi,
I have a Cisco ASA 5510 and couple of webservers behind it. For some specific applications, those webservers call the website hosted on the same box.
The appliance sees that as a Land Attack and gives the following error:
Deny IP due to Land Attack from a.b.c.d to a.b.c.d
Is there any way I can disable this? I tried disabling Anti-spoofing in ASDM but no luck.
Your inputs greatly appreciated.
Thx in advance.
-Janakan
10-20-2006 01:49 PM
This message appears when the firewall receives a packet with the IP source address equal to the IP destination, and the
destination port equal to the source port.It is due to spoofing.Use Access-lists to prevent from and to the same address.
10-21-2006 03:19 AM
Hi,
Thanks for the reply. Well, yea I'm receiving Land Attack because the application I run on my webserver calls it's own URL.(There is a work around by changing the URL with localhost or giving private IP). However, it would take sometime to make the code change. So, for timebeing I'd like to disable land attack and would liek to allow the traffic from a packet whose source/destination IP and port numbers are same.
-Janakan
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide