Skip to main content
Skip table of contents

Pattern 11 : PIX Traffic Messages

Classification

Rule NameRule TypeCommon EventClassification
Pattern 11 : PIX Traffic MessagesBase RuleTraffic Denied by Network FirewallNetwork Deny
PIX-X-500003 : Bad TCP Header LengthSub RuleProtocol AnomalyAttack
PIX-1-106021 : Denied ICMP Reverse Path CheckSub RuleFailed General Attack ActivityFailed Attack
PIX-1-106021 : Denied TCP Reverse Path CheckSub RuleFailed General Attack ActivityFailed Attack
PIX-1-106021 : Denied UDP Reverse Path CheckSub RuleFailed General Attack ActivityFailed Attack
PIX-1-106021 : Denied SCTP Reverse Path CheckSub RuleFailed General Attack ActivityFailed Attack
PIX-1-106022 : ICMP Connection SpoofSub RuleFailed Suspicious Network ActivityFailed Suspicious
PIX-X-212006 : Dropped SNMP RequestSub RuleDropped SNMP RequestFailed Activity
PIX-X-500004 : Invalid Transport FieldSub RuleInvalid Transport FieldWarning
PIX-X-410001 : DNS Request Exceeds Packet LengthSub RuleBad Packet LengthWarning
PIX-X-322004 : No Management IP ConfiguredSub RuleNo Management IP Address ConfiguredWarning
PIX-X-313005 : No Matching Connection For ICMPSub RuleNo Matching Connection for ICMP Error MessageWarning
PIX-X-314001 : Pre-Allocate BackconnectionSub RulePre-Allocated RTSP ConnectionInformation
PIX-X-302004 : Pre-Allocate BackconnectionSub RulePre-Allocate H323 BackconnectionInformation
PIX-X-106018 : Packet DeniedSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-X-106002 : Denied ConnectionSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-4-106023 : Denied Packet by ACLSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-3-106011 : Denied Inbound ICMPSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-X-313004 : Denied ICMPSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-X-419001 : Dropped PacketSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-X-418001 : Dropped PacketSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-X-416001 : Dropped PacketSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-2-106007 : Denied Inbound DNS QuerySub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-3-106010 : Denied Inbound TCP ConnectionSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-3-106010 : Denied Inbound UDP PacketSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-3-106010 : Denied Inbound ICMP PacketSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-3-106014 : Denied Inbound ICMP PacketSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-4-106023 : Denied TCP Connection By ACLSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-4-106023 : Denied UDP Packet By ACLSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-4-106023 : Denied ICMP Packet By ACLSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-3-313001 : Denied ICMP PacketSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-1-106022 TCP Connection SpoofSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-2-106001 : Denied Inbound TCP ConnectionSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-2-106007 : UDP Connection Denied DNS FlagSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-2-106006 : UDP Connection DeniedSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-6-106015 : Denied Inbound TCP ConnectionSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-3-106011 : Denied Inbound UDPSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-3-106011 : Denied Inbound TCPSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-3-106011 : Denied Inbound ICMPSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-X-710003 : Access Denied by ACLSub RuleTraffic Denied by Network FirewallNetwork Deny
PIX-X-614002 : DNS ReplySub RuleDNS ReplyNetwork Traffic
PIX-X-614001 : DNS RequestSub RuleDNS RequestNetwork Traffic
PIX-X-507001 : Terminated ConnectionSub RuleConnection ClosedNetwork Traffic
PIX-X-507003 : Terminated ConnectionSub RuleConnection TerminatedNetwork Traffic
PIX-4-419002 : Duplicate SYN PacketSub RuleDuplicate SYN PacketNetwork Traffic
PIX-X-710005 : Request DiscardedSub RuleRequest DiscardedNetwork Traffic
PIX-X-710006 : Request DiscardedSub RuleRequest DiscardedNetwork Traffic
PIX-X-108003 : Connection TerminatedSub RuleConnection ClosedNetwork Traffic

Mapping with LogRhythm Schema  

Device Key in Log MessageLogRhythm SchemaData Type
N/A<vmid>Number
N/A<severity>Number
N/A<sip>Number
N/A<sname>Text/String
N/A<dip>Number
N/A<dname>Text/String
N/A<sport>Number
N/A<dport>Number
N/A<sinterface>Text/String
N/A<dinterface>Text/String
N/A<protnum>Number
N/A<protname>Text/String
N/A<object>Text/String
N/A<objectname>Text/String
N/A<threatname>Text/String
N/A<reason>Text/String
N/A<duration>Number
N/A<size>Number




JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close