When I scan the interface ip address of a PIX (version 126.96.36.199) with Nessus, I'm shown a Security Issue Warning refering to non-random ip id values in the ip_id field in IP packets. Some research indicates that this can be used for:
stealth os fingerprinting
anti-spoofing rule discovery
Does the PIX use non-random ip id values?
Is this something that I should be concerned about?
If not what defense does the PIX have against these exploits.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...