|
|
|
|
|
|
|
|
 |
 |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] icmp packet drops?
Open SmartDefense and change the ICMP packet Size to 128bytes instead of 64bytes. ICMP packets will get dropped because some cisco switches tend ot increase the packet size above 64K. Daniel Samaan Technical Security Consultant CCSP, CCSE, CCNA, CCA, MCSE+I Cell:[email protected] --------------------------------------------------------------------- Forsythe Solutions 5440 W. Fargo Avenue Skokie, IL 60077 www.forsythesolutions.com Building cost-effective IT infrastructure that organizations trust. |---------+--------------------------------------------> | | Matt Kehler <[email protected]> | | | Sent by: Mailing list for | | | discussion of Firewall-1 | | | <[email protected]| | | KPOINT.COM> | | | | | | | | | 08/22/2003 11:43 AM | | | Please respond to Mailing list | | | for discussion of Firewall-1 | |---------+--------------------------------------------> >----------------------------------------------------------------------------------------------| | | | To: [email protected] | | cc: | | Subject: [FW-1] icmp packet drops? | >----------------------------------------------------------------------------------------------| Out of nowhere, I seem to be getting a lot of ICMP drops as per below. Any reason why I would be getting these out of nowhere? Since they are not rule generated; how can I turn off the logging on them? A setting in global properties I assume, or can I do it per enforcement module? NG AI on IPSO 3.7 build 23. Number: 1159 Date: 22Aug2003 Time: 11:37:27 Product: SmartDefense Interface: eth1c0 Origin: xxxxxxxxxxxxx Type: Log Action: Drop Protocol: icmp Source: xxxxxxxxxxxxxxxxxx Destination: xxxxxxxxxxxxxxxxxxx Attack Name: Large ping Information: Packet data size: 75 Attack Info: Echo request too long icmp-type: 8 icmp-code: 0 thx Matt ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= -------------------------------------------------------------------------------------------------------------------- This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the originator of the message. This footer also confirms that this email message has been scanned for the presence of computer viruses. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
