This message is logged when the firewall discards a packet with an invalid source address. Invalid source addresses are those addresses belonging to the following:
o Loopback network (127.0.0.0)
o Broadcast (limited, net-directed, subnet-directed, and all-subnets-directed)
o The destination host (land.c)
Furthermore, if the sysopt connection enforcesubnet command is enabled, PIX Firewall discards packets with a source address belonging to the destination subnet from traversing the firewall andlogs this message.
Yesterday I started receiving a lot of these messages in the afternoon on my firewall. I was averaging about ~20 per minute but then it shot up to ~160 and stayed that way until sometime early this morning. My firewall sent off about 5 million logs in just these messages over the course of about 8 hours. Looking at the log messages, I dont yet see a correlation with the ip addresses its building and tearing down. Does anyone have an idea of what could cause this?
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...