Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
382
Views
0
Helpful
2
Replies

PIX logging messages

tmcmillion
Level 1
Level 1

‎12-03-2004 11:08 AM - edited ‎02-20-2020 11:47 PM

We have what I would consider to be some abnormal behavior on one of my mail servers. The server admins says everything is OK but I disagree. I have a whole bunch (100 or so) per minute of the following series of entries in my PIX log file from this Server. Is this normal behavior?

%PIX-6-302013: Built outbound TCP connection 40391293 for outside:68.216.187.33/25 (68.216.187.33/25) to DMZ:172.23.5.9/3989 (65.196.5.9/3989)

%PIX-6-106015: Deny TCP (no connection) from 68.216.187.33/25 to 65.196.5.9/3989 flags RST on interface outside

%PIX-6-302014: Teardown TCP connection 40391293 for outside:68.216.187.33/25 to DMZ:172.23.5.9/3989 duration 0:00:01 bytes 324 TCP Reset-O

0 Helpful
2 Replies 2

nkhawaja
Cisco Employee
Cisco Employee

‎12-04-2004 09:37 PM

No, this doesnt seem normal. Seems like server at 172.23.5.9 is trying to send emails but the connections gets dropped because PIX is seeing RST packets. Is this MS exchange server? do you have fixup smtp disabled?

what version of PIX

any thing changed?

Thanks

Nadeem

0 Helpful

tmcmillion
Level 1
Level 1
In response to nkhawaja

‎12-06-2004 06:28 AM

This is POP server used for relaying. fixup smtp is not disabled and there have been know chnages on the PIX. I came across this problem while helping one the server admins troubleshoot a problem with the server.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card