This has been a kind of nagging question I've had for a while, why would netbios port 137 traffic from another subnet be trying to cross my ASA's inside interface. 10.4.2.0/24 -> router -> p2p T1 -> router 10.4.0.0/16 -> ASA -> Internet
the following gets periodically logged on my ASA
4 May 10 2007 11:45:52 106023 10.4.2.39 10.255.255.255 Deny udp src inside:10.4.2.39/137 dst inside:10.255.255.255/137 by access-group "inside_access_in" [0x0, 0x0]
I always thought layer 3 devices blocked this sort of broadbcast traffic??
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...