Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX syslog showing bunches of port 110 being blocked

I have a PIX 515e running ver 6.3(3) and the syslog shows bunches(thousands a day) messages similar to this:

Mar 02 2004 00:21:40: %PIX-4-106023: Deny tcp src outside:X.X.X.X/110 dst inside:Y.Y.Y.Y/40713 by access-group "outside_access_in"

X.X.X.X is our mail server that is hosted elsewhere. Why is it blocking POP messages? No one is having any trouble receiving mail.

TIA

Timm

1 REPLY
New Member

Re: PIX syslog showing bunches of port 110 being blocked

%PIX-4-106023: Deny protocol src [inbound-interface]:[src_address/src_port] dst outbound-interface:dst_address/dst_port [type {type}, code {code}] by access_group access-list-name

Explanation An IP packet was denied by the access-list.

Action Change permission of access-list if a permit policy is desired. If messages persist from the same source address, messages could indicate a foot printing or port scanning attempt. Contact the remote host administrator.

The above explanation should help. Feel free to attach ur PIX config so I can look into it in more detail.

128
Views
0
Helpful
1
Replies
CreatePlease to create content