Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Gold

PIX, drop packets with TCP reset or ICMP

I'm assuming (perhaps wrongly) that the pix silently drops connections denied via access rules. Is there a way I can selectively drop packets on the PIX and send a TCP reset or ICMP dst unreachable reply. I'm hoping by adding a little something to the ACL entry, like "with-reset" or whatever.

Thanks.

1 REPLY
Gold

Re: PIX, drop packets with TCP reset or ICMP

well, I stand corrected. Finally got wireshark downloaded, and TCP resets are the norm. UDP I'm less concerned about anyway.

242
Views
0
Helpful
1
Replies
CreatePlease to create content