| Message Code | PIX-4-402117 |
| Severity | Warning |
| Description | IPSEC: Received a non-IPSec (protocol) packet from remote_IP to local_IP. |
| Explanation | "This message is displayedThis message is displayed when the received packet matched the crypto map ACL, but it is not IPSec-encapsulated. The IPSec Peer is sending unencapsulated packets. This error can occur because of a policy setup error on the peer. For example, the firewall
may be configured to only accept encrypted Telnet traffic to the outside interface port 23. If you attempt to Telnet without IPSec encryption to the outside interface on port 23, this message appears, but not on telnet or traffic to the outside interface on ports other than 23. This error can also indicate an attack. This system log message is not generated except under these conditions (for example, it is not generated for traffic to the firewall interfaces themselves). See messages 710001, 710002, and 710003 for messages that track TCP and UDP requests. This message is rate limited to no more than one message every five seconds protocol—IPSec protocol remote_IP—IP address of the remote endpoint of the tunnel local_IP—IP address of the local endpoint of the tunnel" |
| User Action | Contact the peer administrator to compare policy settings. |
| Reference Links |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.