ASA 5520 ASDM Syslog messages
Posted on 2013-12-17
I'm seeing the asdm syslog messages roll by with the following:
IP = <IP Address> Header invalid, missing SA payload! (next payload = 4)
I do have VPNs configured, one site-to-site and the other a regular one. Neither of those originate from the IP address mentioned.
I put that IP into a drop ACL at the begining on the outside interface and it still keeps on coming.
Any idea on what this is and why its happening? How do i stop it?