%PIX-6-106015: Deny TCP (no connection) from IP_address/port to IP_address/port flags tcp_flags on interface interface_name.
This message is logged when the firewall discards a TCP packet that has no associated connection in the firewall unit's connection table.
The firewall looks for a SYN flag in the packet, which indicates a request to establish a new connection.
If the SYN flag is not set, and there is not an existing connection, the firewall discards the packet.
--------------------------------
Cisco Recommended Action: None required unless the firewall receives a large volume of these invalid TCP packets.
If this is the case, trace the packets to the source and determine the reason these packets were sent.
Release Notes for the Cisco Secure PIX Firewall Version 5.1(1)
formatting link
Hope this helps.
Brad Reese BradReese.Com - Cisco Jobs
formatting link
Hendersonville Road, Suite 17 Asheville, North Carolina USA 28803 USA & Canada: 877-549-2680 International: 828-277-7272 Fax: 775-254-3558 AIM: R2MGrant BradReese.Com - Cisco CraigsList Jobs
formatting link