Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1770
Views
0
Helpful
0
Replies

When using VPN getting flooded with [ cve ] 2003- 0903

Bonbon
Level 1
Level 1

‎12-20-2018 10:55 AM - edited ‎02-21-2020 08:35 AM

So when this happens the attack or false positive is directed at the device with the VPN. The address/ IP is the same as the VPN server address directed towards my IPad in this scenario. My Intrusion Prevention is dropping 20 packets a second when this happens. Sometime the very last digit is off by one number from the IP presented by the VPN. So if the app says 98.142.213.24, the intrusion prevented address might be 98.142.213.23.
I’m sending some pics along with this message. The source port and destination port are 4500. When the Intrusion Prevention blocks this signature the internet is blocked. I then switch to another location and until the system blocks that new IP I am able to surf the web.

Is this a false positive? From what I’ve read online there is no known false positives for this code.

Labels:
Preview file
1337 KB
Preview file
1195 KB
Preview file
2664 KB
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card