Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
475
Views
0
Helpful
1
Replies

FWSM Critical message

jaravinthan
Level 1
Level 1

‎10-25-2007 09:40 PM - edited ‎03-11-2019 04:31 AM

Hi,

below is the message i get from FWSM. The IP's always change but what i see is its always any of the Windows DC's located across globe.

2007-10-26 00:42:18 Local4.Critical <FWSM IP> Oct 26 2007 00:42:51: %FWSM-2-106007: Deny inbound UDP from <IP/53> to <IP/dynamic port> due to DNS Response

Any clue on what could cause and why suddenly these message bombard in the logs. We have DNS inspect enabled since scratch. Please advice.

Labels:
0 Helpful
1 Reply 1

palomoj
Level 1
Level 1

‎10-25-2007 09:57 PM

it sounds like a valid dns response has already been detected and allowed through the firewall. i would do some testing and see if this is the case. you may need to do a packet capture and verify this.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card