Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX 515E discards

I installed a new monitoring package which monitors, among other things discards on interfaces. It's notified me of excessive discards on my PIX interfaces; inside, outside and DMZ - some as high as 5%.

What is the source of discards? Is a discard when the PIX drops a packet that doesn't match the device's security policy?

2 REPLIES
New Member

Re: PIX 515E discards

Nobody? Nothing?

Hall of Fame Super Blue

Re: PIX 515E discards

Hi

A discard can occur for quite a few reasons but basically you are correct in the way you describe it, ie. a packet that does not conform to the security policy of the firewall, whether that be the explicit access-lists in use or implicit rules of the pix such as the way it handles fragmentation.

Hope this has answered your question

Jon

109
Views
0
Helpful
2
Replies
CreatePlease to create content