03-07-2014 02:09 AM
Hi all.
We have recently moved to a new office and with it a new IP range. Once we moved and brought all our networking up we have been seeing a constant Peer attempt from two different Ip's to our ASA. We have no configurations for these IP's and they are filling our logs with errors.
I'm pretty sure the necessary deny rules are in place ( as the peer is erroring ) but is there a way to block these attempts so they stop filling up out logs.
The only clue we have right now is that the IP block was used by a previous tenant / lease and an old configuration VPN is being attempted.
Thanks.
03-07-2014 07:26 AM
Check control plane ACL on ASA. By default the ACLs applied to interfaces on ASA are for dataplane traffic.
03-12-2014 01:57 AM
Hi.
I'm nor quite sure what your asking me to check. Could you please be more specific?
03-12-2014 07:20 AM
Hi Guy's.
I would love to remove these failing peer attempts from my logs. Is this possible?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide