NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] State Table



Chris is correct,

	Effectively every time that you start/stop the firewall process you are
both stopping all traffic and you are also clearing the state table so that
all connection effectively will be reset.  This of course would have an
impact in a production environment, especially for remote users because they
will lose their connection and have to reauthenticate in order to
re-establish their VPN tunnel.

Juan Concepcion
Network Engineer/Security Consultant
CCSA/CCSE
E-Mail: [email protected]


-----Original Message-----
From: [email protected]
[mailto:[email protected]]On Behalf Of
Chris Arnold
Sent: Saturday, May 19, 2001 8:46 AM
To: 'Juppunov, George '; '[email protected] '
Subject: RE: [FW1] State Table



Not true.  Think about it...if you shutdown the FW service, the state tables
are gone.  Why would the underlying OS hold some data structure in memory
just in case the service that created it decides to respawn?

Chris

-----Original Message-----
From: Juppunov, George
To: [email protected]
Sent: 5/17/01 6:47 PM
Subject: RE: [FW1] State Table

Your connections will be "suspended", and dropped after the timeout
expires.
In other words you can stop and start your firewall in the middle of the
day without
impacting production.

George
-----Original Message-----
From: Tom Louis [mailto:[email protected]]
Sent: Wednesday, May 16, 2001 1:41 PM
To: Tony Wong; [email protected]
Subject: RE: [FW1] State Table


The connections should all be cropped if you are controlling IP
forwarding. The State of the connections should be lost.

Thomas Stala
[email protected]
Hope this helps

-----Original Message-----
From: [email protected]
[mailto:[email protected]]On Behalf Of Tony
Wong
Sent: Tuesday, May 15, 2001 2:02 PM
To: [email protected]
Subject: [FW1] State Table

I am trying to understand  how the state table works in checkpoint fw-1.
What is the state table. What happens to the state table when I stop and
start the fw-1 service. What happens to connections when the service
stops and starts?

Say I was doing a ftp file transfer or http file transfer and the
service was restarted. What happens to the state table or what happens
to the tcp connection?


Thank you very much


_____________________________________________________________________
IMPORTANT NOTICES:
This message is intended only for the addressee. Please notify the
sender by e-mail if you are not the intended recipient. If you are not
the intended recipient, you may not copy, disclose, or distribute this
message or its contents to any other person and any such actions may be
unlawful.

Banc of America Securities LLC("BAS") does not accept time sensitive,
action-oriented messages or transaction orders, including orders to
purchase or sell securities, via e-mail.

BAS reserves the right to monitor and review the content of all messages
sent to or from this e-mail address. Messages sent to or from this
e-mail address may be stored on the BAS e-mail system.




============================================================================
====
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
============================================================================
====



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents © 2004 Network Presence, LLC. All rights reserved.