Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2458
Views
0
Helpful
1
Replies

Invalid transport field for protocol=TCP

srknthcse
Level 1
Level 1

‎02-27-2018 03:22 PM - edited ‎02-21-2020 07:27 AM

Case 1: ":Feb 25 16:42:16 EST: %ASA-session-4-500004: Invalid transport field for protocol=TCP, from {Black listed IP}/{random source port} to {public server}/0 "

 

Case 2: ":Feb 25 16:42:16 EST: %ASA-session-4-500004: Invalid transport field for protocol=TCP, from {Internal IP}/{random source port} to {public server}/0 "

 

In case I am able to see 1000-2000 events within 2 to 5 sec and at the same time case 2 events triggering. Could you help me in understanding are the packets allowed into network or not? If not what is action taken by ASA?How to avoid or mitigate this in future?

Labels:
0 Helpful
1 Reply 1

Dennis Mink
VIP Alumni
VIP Alumni

‎02-27-2018 04:16 PM

check this post:

 

 

https://supportforums.cisco.com/t5/firewalling/invalid-transport-field-for-protocol-tcp/td-p/1671238

Please remember to rate useful posts, by clicking on the stars below.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card