cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
719
Views
0
Helpful
2
Replies

Allow Land attack

rjanakan
Level 1
Level 1

Hi,

I have a Cisco ASA 5510 and couple of webservers behind it. For some specific applications, those webservers call the website hosted on the same box.

The appliance sees that as a Land Attack and gives the following error:

Deny IP due to Land Attack from a.b.c.d to a.b.c.d

Is there any way I can disable this? I tried disabling Anti-spoofing in ASDM but no luck.

Your inputs greatly appreciated.

Thx in advance.

-Janakan

2 Replies 2

irisrios
Level 6
Level 6

This message appears when the firewall receives a packet with the IP source address equal to the IP destination, and the

destination port equal to the source port.It is due to spoofing.Use Access-lists to prevent from and to the same address.

Hi,

Thanks for the reply. Well, yea I'm receiving Land Attack because the application I run on my webserver calls it's own URL.(There is a work around by changing the URL with localhost or giving private IP). However, it would take sometime to make the code change. So, for timebeing I'd like to disable land attack and would liek to allow the traffic from a packet whose source/destination IP and port numbers are same.

-Janakan

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: