Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
200
Views
0
Helpful
1
Replies

Deny statement on Cisco 515 FW issue

jemorton
Level 1
Level 1

‎05-12-2004 10:02 AM - edited ‎03-09-2019 07:21 AM

Hello,

I am getting this deny statement for a connection coming into my fw.

May 12 12:09:26 cfecf-241-a.net.foc.com %PIX-3-106010: Deny inbound tcp src Vendor:172.26.6.95/27714 dst Customer:172.31.32.207/7778

Notice that the deny statement doesnt give a discriptor such as (no xlate) or (no connection) or (denied by access-group "access-group name")

Can someone tell me what might be the cause for this conversation being denid by the FW. I've check my route, as well as my access-list. Both look to be proper.

Any help would be greatly appreciated.

thank you.

Labels:
0 Helpful
1 Reply 1

ehirsel
Level 6
Level 6

‎05-12-2004 11:41 AM

What version of pix code are you running?

Does the connection originate on a source off of the Vendor interface? Or does it originate off of the Customer interface?

Post the relevant acl entries and statics; that may help me find the source of your issue.

0 Helpful
Customers Also Viewed These Support Documents