topic IDS with PIX 515 static map in Network Security https://community.cisco.com/t5/network-security/ids-with-pix-515-static-map/m-p/287903#M564476 <P>Hi </P><P></P><P>We are using Snort and get follwoing log message: </P><P></P><P>06/23-19:21:41.146900 12.107.140.x -&gt; x.x.x.x ICMP TTL:117 TOS:0x0 ID:17311 IpLen:20 DgmLen:28 </P><P>Type:8 Code:0 ID:512 Seq:10288 ECHO </P><P>[Xref =&gt; <A class="jive-link-custom" href="http://www.whitehats.com/info/IDS162" target="_blank">http://www.whitehats.com/info/IDS162</A>] </P><P></P><P>12.107.140.x is outside ip and not use by my company. </P><P>x.x.x.x is our inside server ip address. This ip address has a public ip address static setup in the PIX 515,permit only for one tcp port, no icmp permit for the static ip or PIX outside interface. </P><P></P><P>Why outside machines can send ICMP to the inside machine and PIX 515 not do protection? Does the attack to the PIX 515? </P><P></P><P></P><P>Please help </P><P></P><P>Thanks </P><P></P><P>ben </P><P></P> Fri, 21 Feb 2020 07:28:58 GMT bma 2020-02-21T07:28:58Z IDS with PIX 515 static map https://community.cisco.com/t5/network-security/ids-with-pix-515-static-map/m-p/287903#M564476 <P>Hi </P><P></P><P>We are using Snort and get follwoing log message: </P><P></P><P>06/23-19:21:41.146900 12.107.140.x -&gt; x.x.x.x ICMP TTL:117 TOS:0x0 ID:17311 IpLen:20 DgmLen:28 </P><P>Type:8 Code:0 ID:512 Seq:10288 ECHO </P><P>[Xref =&gt; <A class="jive-link-custom" href="http://www.whitehats.com/info/IDS162" target="_blank">http://www.whitehats.com/info/IDS162</A>] </P><P></P><P>12.107.140.x is outside ip and not use by my company. </P><P>x.x.x.x is our inside server ip address. This ip address has a public ip address static setup in the PIX 515,permit only for one tcp port, no icmp permit for the static ip or PIX outside interface. </P><P></P><P>Why outside machines can send ICMP to the inside machine and PIX 515 not do protection? Does the attack to the PIX 515? </P><P></P><P></P><P>Please help </P><P></P><P>Thanks </P><P></P><P>ben </P><P></P> Fri, 21 Feb 2020 07:28:58 GMT https://community.cisco.com/t5/network-security/ids-with-pix-515-static-map/m-p/287903#M564476 bma 2020-02-21T07:28:58Z Re: IDS with PIX 515 static map https://community.cisco.com/t5/network-security/ids-with-pix-515-static-map/m-p/287904#M564477 <HTML><HEAD></HEAD><BODY><P>Did you check the bug tool kit for any known bugs??</P></BODY></HTML> Thu, 01 Jul 2004 19:52:05 GMT https://community.cisco.com/t5/network-security/ids-with-pix-515-static-map/m-p/287904#M564477 s-doyle 2004-07-01T19:52:05Z