Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
654
Views
0
Helpful
1
Replies

ASA 5520 Deny SPoofing

Desmond Smith
Level 1
Level 1

‎09-19-2012 06:33 AM - edited ‎03-11-2019 04:56 PM

Hello All,

I have set up an ASA 5520 pair and I have an external IPSEC Vpn configured for a host coming from a remote office.

The problem that I am having is each time the remote office tries to connect to my 5520 VPN the logs are saying that it is being denied because of IP Spoofing. The host is a valid host and I have checked the mac address to ensure it is the host that is trying to connect to my VPN, so we are good there.

Does anyone know why this would be happening on the outside interface of my 5520 each time the VPN tries to connect?

Remote Pc

1.1.1.1

ASA Outside Interface

2.2.2.2

What I see in the logs:

Deny IP Spoof from (2.2.2.2) to 1.1.1.1 on Outside interface

Thanks in advance!

Labels:
0 Helpful
1 Reply 1

Jennifer Halim
Cisco Employee
Cisco Employee

‎09-20-2012 06:27 AM

Pls check if there is any routing that might be routed to a different interface than where the traffic is supposed to come in from.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card