caclement
asked on
How to block icmp messages with a cisco router
We have some hosts or a host that seems to disconnect all the vpn client on my network.
I took a look at the server logs and here what is shows
22116 11:01:17.531532 MY_IP DEST_IP TCP 53025 > pptp [SYN]
Seq=0 Win=8192 Len=0 MSS=1460 WS=2 TSV=4447122 TSER=0
So it seems that some clients seend some icmp destination unreachable on the server. The server somehow close all the connections.
Is it possible to block those icmp send messages with a cisco 800 series.
Like deny icmp all all ? Is it going to work ??
Thanks
I took a look at the server logs and here what is shows
22116 11:01:17.531532 MY_IP DEST_IP TCP 53025 > pptp [SYN]
Seq=0 Win=8192 Len=0 MSS=1460 WS=2 TSV=4447122 TSER=0
So it seems that some clients seend some icmp destination unreachable on the server. The server somehow close all the connections.
Is it possible to block those icmp send messages with a cisco 800 series.
Like deny icmp all all ? Is it going to work ??
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
access-list 101 deny icmp any any Blocks any ICMP sent messages.
access-list YOURINBOUNDACL deny tcp any SERVERIP eq 1723.
Best regards
Kvistofta