[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW1] Why does i have many pakets of this type
Actually, it is a client request timeout where the firewall times out waiting for the response, so when the delayed response arrives, the firewall has expired it from the state table. Volker Tanger wrote: > Greetings! > > Hermann Strassner schrieb: > > > I have a lot of these pakets with high ports and i do not understand why. May someone explain it to me? > > > > Action Service Source Destination Proto Rule S_Port > > "drop" "1684" "ns2.UUNet" "Mailserver" "udp" "29" "nameserver" > > "drop" "10933" "marktplatz02.ebay.is-kunden.de" "NS1" "tcp" "29" "http" > > "drop" "57896" "mbr-s05.websys.aol.com" "NS1" "tcp" "29" "84" > > "drop" "4718" "www03.chip.icpro.de" "NS1" "tcp" "29" "http" > > "drop" "3416" "tp160178.adsl.tisnet.net.tw" "Mailserver" "tcp" "29" "smtp" > > "drop" "1684" "ns1.UUNet" "Mailserver" "udp" "29" "nameserver" > > "drop" "10933" "marktplatz02.ebay.is-kunden.de" "NS1" "tcp" "29" "http" > > "drop" "57896" "mbr-s05.websys.aol.com" "NS1" "tcp" "29" "84" > > "drop" "4718" "www03.chip.icpro.de" "NS1" "tcp" "29" "http" > > "drop" "3416" "tp160178.adsl.tisnet.net.tw" "Mailserver" "tcp" "29" "smtp" > > "drop" "1684" "ns2.UUNet" "Mailserver" "udp" "29" "nameserver" > > Dude - somehow you are blocking the return/answer packets. > Maybe you accidentally have deactivated "Accept Established TCP Connections" (Policy / Properties / > AccessList)? > If so, you cannot use http or smtp from Mailserver or NS1 (sessions breaking down)? > > Bye > Volker > > -- > > Volker Tanger <[email protected]> > Wrangelstr. 100, 10997 Berlin, Germany > DiSCON GmbH - Internet Solutions > http://www.discon.de/ > > ================================================================================ > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================================================ ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|