<div>
<div class="content wysiwyg-content">
I have a Cisco firewall that is logging the following SYSLOG (about 15 per second):<br />
<br />
Denied ICMP type=3, from laddr 10.1.72.30 on interface Inside539 to 67.128.185.202: no matching session<br />
<br />
The destination IP of 67.128.185.202 varies, but the source is always the same. &nbsp;I have found that the customer has SolarWinds installed on this host. &nbsp;Why would the firewall be blocking OUTBOUND packets when I have an outbound ACL (applied to Inside539 interface)?<br />
<br />
access-list Inside539_access_in extended permit ip 10.1.72.0 255.255.255.0 any 
</div>
</div>


I have a Cisco firewall that is logging the following SYSLOG (about 15 per second):

Denied ICMP type=3, from laddr 10.1.72.30 on interface Inside539 to 67.128.185.202: no matching session

The destination IP of 67.128.185.202 varies, but the source is always the same.  I have found that the customer has SolarWinds installed on this host.  Why would the firewall be blocking OUTBOUND packets when I have an outbound ACL (applied to Inside539 interface)?

access-list Inside539_access_in extended permit ip 10.1.72.0 255.255.255.0 any 

Cisco FWSM Denying Outbound ICMP (type 3)

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.