Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
369
Views
0
Helpful
1
Replies

How to disable ICMP

shivaram840
Level 1
Level 1

‎07-22-2016 09:46 AM

Hi friends,

i am getting in logs , is this danger ? 

%ASA-6-302020: Built {in | out}bound ICMP connection for faddr {faddr 
| icmp_seq_num} [(idfw_user)] gaddr {gaddr | cmp_type} laddr laddr [(idfw_user)]

An ICMP session was established in the fast-path when stateful ICMP was enabled using the inspect icmp command.

please look the attached screenshot ?

Thanks,

Shiva

Labels:
Preview file
190 KB
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎07-23-2016 07:13 AM

That's the normal syslog message one would expect when ICMP is allowed (via inspect action in the MPF) and syslog level 6 or higher is enabled.

We typically don't recommend level 6 syslog unless required for troubleshooting or auditing purposes. It will generate tens of thousands of messages per hour on any moderately loaded firewall and make identification of operational issues more difficult as it is that much harder to separate "signal" from "noise".

0 Helpful
Customers Also Viewed These Support Documents