我的 Pix 501 上的许可证用完了,show local-host 命令列出了一些不属于我的 10.10.1.* 子网的奇数 IP 地址。知道它们是什么吗?我唯一能找到的是一个潜在的 ISP:DISA 是国防互操作网络服务管理局,是英国国防部的一个机构。听起来不对。
不过,我没有看到任何活动的连接。我无法对这些 IP 进行 ping 或跟踪路由,但在我清除列表后它们会重新出现,并在该一般范围内使用各种其他地址,直到达到连接限制。根据被拒绝的数量,我想如果我没有连接限制,我会拥有更多。很可疑。有没有其他人看到这个?
pixfirewall# show local-host
Interface inside: 10 active, 10 maximum active, **118 denied**
local host: <10.10.1.110>,
TCP connection count/limit = 0/unlimited
TCP embryonic count = 0
TCP intercept watermark = unlimited
UDP connection count/limit = 0/unlimited
AAA:
Xlate(s):
Conn(s):
local host: <10.10.1.176>,
TCP connection count/limit = 0/unlimited
TCP embryonic count = 0
TCP intercept watermark = unlimited
UDP connection count/limit = 0/unlimited
AAA:
Xlate(s):
Conn(s):
local host: <10.10.1.170>,
TCP connection count/limit = 0/unlimited
TCP embryonic count = 0
TCP intercept watermark = unlimited
UDP connection count/limit = 1/unlimited
AAA:
Xlate(s):
Conn(s):
local host: <10.10.1.175>,
TCP connection count/limit = 11/unlimited
TCP embryonic count = 0
TCP intercept watermark = unlimited
UDP connection count/limit = 1/unlimited
AAA:
Xlate(s):
Conn(s):
local host: <10.10.1.108>,
TCP connection count/limit = 0/unlimited
TCP embryonic count = 0
TCP intercept watermark = unlimited
UDP connection count/limit = 0/unlimited
AAA:
Xlate(s):
Conn(s):
local host: <25.33.41.115>, // ???????????????? what is this?
TCP connection count/limit = 0/unlimited
TCP embryonic count = 0
TCP intercept watermark = unlimited
UDP connection count/limit = 0/unlimited
AAA:
Xlate(s):
Conn(s):
local host: <25.33.226.124>, // ???????????????? what is this?
TCP connection count/limit = 0/unlimited
TCP embryonic count = 0
TCP intercept watermark = unlimited
UDP connection count/limit = 0/unlimited
AAA:
Xlate(s):
Conn(s):
local host: <10.10.1.172>,
TCP connection count/limit = 0/unlimited
TCP embryonic count = 0
TCP intercept watermark = unlimited
UDP connection count/limit = 0/unlimited
AAA:
Xlate(s):
Conn(s):
local host: <25.36.114.91>, // ???????????????? what is this?
TCP connection count/limit = 0/unlimited
TCP embryonic count = 0
TCP intercept watermark = unlimited
UDP connection count/limit = 0/unlimited
AAA:
Xlate(s):
Conn(s):
local host: <10.10.1.109>,
TCP connection count/limit = 0/unlimited
TCP embryonic count = 0
TCP intercept watermark = unlimited
UDP connection count/limit = 0/unlimited
AAA:
Xlate(s):
Conn(s):
pixfirewall#
事实证明,这确实是由我的 Nexus One Android 智能手机引起的。我会将这个问题移到 Google 上的 Android 论坛上。