• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

PIX to Concentrator VPN Tunnel

James Bond

James Bond

Diamond Member
We have a virus on a local network which creates random IP addresses and does DoS attacks outbound.

Because it creates random IP's it fills up the local host table (10 IP's max) in no time at all..

I created an ACL for the Tunnel to only allow "real" PC addresses outbound, but it didn't seem to help.

Any ideas/
 
have you isolated it to a single computer? instead of trying to counteract the DoS, i would work on tracking down the system and disconnecting it asap.
 
I ended up disconnecting everything connected to the PIX, other than the modem, and the problem continued (even after 'clear local-host'). Within a few seconds, if I did 'sh local-host' it would show tons of connections with fake IPs...

How can remote computers be creating local connections through the tunnel?!
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top