About Johnny Flanagan

Johnny Flanagan · 07-19-2012

I have an appliance capturing syslog information from my ASA5520. I am seeing a TON of entries for ASA-4-419002: Duplicate TCP SYN from inside:XXX.XXX.XXX.XXX/##### to inside:YYY.YYY.YYY.YYY/44487 with different initial, with the first IP address log...

Johnny Flanagan · 12-14-2012

I haven't abandoned my post, just been swamped with other duties. When I get a chance here on my side, I'll implement these suggestions and see if it fixes my problems as well. Thanks for all of the info.

Johnny Flanagan · 07-20-2012

We actually just got that turned off, as it was generating a lot of false positives and restricting valid access. I'll read on it, and see what controls are there to minimize the impact to legitimate traffic.

Johnny Flanagan · 07-19-2012

Guess I fat-fingered (clicked?) the discussion group I wanted to send this to. Thanks for the heads-up. It should be in the proper forum now. I will look at this in the morning. I'm a relative newbie to the Cisco CLI, so we'll see what I can do.

Member Since	‎07-19-2012 12:33 PM
Date Last Visited	‎08-18-2017 03:53 AM
Posts	4

User Statistics

User Activity

Duplicate TCP SYN log entries

Re: Duplicate TCP SYN log entries

Duplicate TCP SYN log entries

Duplicate TCP SYN log entries