Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW1] Why does i have many pakets of this type

To: Volker Tanger <[email protected]>
Subject: Re: [FW1] Why does i have many pakets of this type
From: CryptoTech <[email protected]>
Date: Fri, 09 Feb 2001 19:00:10 -0500
Cc: Hermann Strassner <[email protected]>, Fw-1 Mailinglist <[email protected]>
References: <[email protected]> <[email protected]>
Reply-to: [email protected]
Sender: [email protected]

Actually, it is a client request timeout where the firewall times out waiting for the response, so when the
delayed response arrives, the firewall has expired it from the state table.


Volker Tanger wrote:

> Greetings!
>
> Hermann Strassner schrieb:
>
> > I have a lot of these pakets with high ports and i do not understand why. May someone explain it to me?
> >
> > Action  Service Source                           Destination   Proto  Rule  S_Port
> > "drop"  "1684"  "ns2.UUNet"                      "Mailserver"  "udp"  "29"  "nameserver"
> > "drop"  "10933" "marktplatz02.ebay.is-kunden.de" "NS1"         "tcp"  "29"  "http"
> > "drop"  "57896" "mbr-s05.websys.aol.com"         "NS1"         "tcp"  "29"  "84"
> > "drop"  "4718"  "www03.chip.icpro.de"            "NS1"         "tcp"  "29"  "http"
> > "drop"  "3416"  "tp160178.adsl.tisnet.net.tw"    "Mailserver"  "tcp"  "29"  "smtp"
> > "drop"  "1684"  "ns1.UUNet"                      "Mailserver"  "udp"  "29"  "nameserver"
> > "drop"  "10933" "marktplatz02.ebay.is-kunden.de" "NS1"         "tcp"  "29"  "http"
> > "drop"  "57896" "mbr-s05.websys.aol.com"         "NS1"         "tcp"  "29"  "84"
> > "drop"  "4718"  "www03.chip.icpro.de"            "NS1"         "tcp"  "29"  "http"
> > "drop"  "3416"  "tp160178.adsl.tisnet.net.tw"    "Mailserver"  "tcp"  "29"  "smtp"
> > "drop"  "1684"  "ns2.UUNet"                      "Mailserver"  "udp"  "29"  "nameserver"
>
> Dude - somehow you are blocking the return/answer packets.
> Maybe you accidentally have deactivated "Accept Established TCP Connections" (Policy / Properties /
> AccessList)?
> If so, you cannot use http or smtp from Mailserver or NS1 (sessions breaking down)?
>
> Bye
>     Volker
>
> --
>
> Volker Tanger  <[email protected]>
>  Wrangelstr. 100, 10997 Berlin, Germany
>     DiSCON GmbH - Internet Solutions
>          http://www.discon.de/
>
> ================================================================================
>      To unsubscribe from this mailing list, please see the instructions at
>                http://www.checkpoint.com/services/mailing.html
> ================================================================================




================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

References:
- [FW1] Why does i have many pakets of this type
  - From: "Hermann Strassner" <[email protected]>
- Re: [FW1] Why does i have many pakets of this type
  - From: "Volker Tanger" <[email protected]>

Prev by Date: Re: [FW1] FW1> VPN-1 Client won't connect
Next by Date: Re: [FW1] Problems with ftp
Previous by thread: Re: [FW1] Why does i have many pakets of this type
Next by thread: [FW1] Why does i have many pakets of this type
Index(es):
- Date
- Thread