We are running FW1 w/ sp2. We have three applications adversely
affected by our new firewall. These applications work for a while, and then
die. These applications are between DMZ’s and all ports are open between these
2 servers. The only thing we see in the log is the "Unknown established
TCP packet" message. My understanding of what I read on phoneboy stated
that this means the firewall no longer has a TCP session entry in its table for
these packets. They also seemed to indicate that the older version of FW1
actually attempted to restore this entry in the table before dropping the
packet "on the floor". I was led to believe by what I read that this
"fix" would make FW1 v4.1 sp2 run like the old method. Has anyone had
this problem and/or workaround to the problem?? Are there any reasons why we
shouldn’t apply the fix suggested on phoneboy’s website?? Thanks!!
Armando