Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

CHAT SERVER

I am using PIX 520 and it is working fine but only chat server is not working.

Please have a look my configuration

PIX Version 6.3(3)

interface ethernet0 100full

interface ethernet1 10baset

interface ethernet2 100full

interface ethernet3 100full

interface ethernet4 auto shutdown

interface ethernet5 auto shutdown

nameif ethernet0 outside security0

nameif ethernet1 inside security100

nameif ethernet2 intf2 security10

nameif ethernet3 intf3 security15

nameif ethernet4 intf4 security20

nameif ethernet5 intf5 security25

!

ip address outside 202.52.251.145 255.255.255.0

ip address inside 192.168.10.75 255.255.255.0

ip address intf2 202.52.255.50 255.255.255.0

!

!global (outside) 1 interface

global (intf2) 1 interface

nat (inside) 1 0.0.0.0 0.0.0.0 0 0

static (intf2,outside) 202.52.255.0 202.52.255.0 netmask 255.255.255.0

!

access-group 117 in interface outside

route outside 0.0.0.0 0.0.0.0 202.52.251.1 1

!

!

[ please help me just my chat server is not working

is there any mistake in my configuration or I have to add any command.Please help me

Here is the log

106015: Deny TCP (no connection) from 202.79.33.134/4293 to 202.52.255.10/91 fla

gs FIN ACK on interface outside

302013: Built inbound TCP connection 5404 for outside:202.52.249.38/1128 (202.52

.249.38/1128) to intf2:202.52.255.10/80 (202.52.255.10/80)

106015: Deny TCP (no connection) from 202.70.64.11/52748 to 202.52.255.10/80 fla

gs FIN ACK on interface outside

302013: Built inbound TCP connection 5405 for outside:202.79.62.15/20744 (202.79

.62.15/20744) to intf2:202.52.255.10/80 (202.52.255.10/80)

106015: Deny TCP (no connection) from 202.174.149.164/1029 to 202.52.255.10/91 f

lags PSH ACK on interface outside

rgds,

Ishwar

1 REPLY
Gold

Re: CHAT SERVER

Hi Ishwar,

The log code 106015 indicates the following:

Log Message %PIX-6-106015: Deny TCP (no connection) from IP_addr/port to IP_addr/port flags.

Explanation:-

This message is logged when the PIX Firewall discards a TCP packet that has no associated connection in the PIX Firewall unit's connection table. PIX Firewall looks for a SYN flag in the packet, which indicates a request to establish a new connection. If the SYN flag is not set, and there is not an existing connection, the PIX Firewall discards the packet.

Recommended Action:-

None required unless the PIX Firewall receives a large volume of these invalid TCP packets. If this is the case, trace the packets to the source and determine the reason these packets were sent.

99
Views
0
Helpful
1
Replies
CreatePlease to create content