Working on this problem all evening and it’s
making me crazy.
Looking at the log it seems like packets
from a remote machine (NT 4 Server) sending packets out through a FW1v4.1-SP-1 firewall
over the wan then through my FW1v4.1-SP-1 firewall get dropped.
Some packets get in ok some not, like:
Foo(Valid Address) Nick(Valid
Address) # This gets
blocked
But when the log shows:
Foo Nick(Valid
Address) # This gets in!
I am not using anti-spoofing on any
interface.
Foo and Nick are in private networks and
are using a static nat to a public address in our DMZ networks.
Both Firewalls are win NT 4.0 sp6a with
three interfaces.
This seems to work at other sites with the
same setup.
Thanks for your help!
Rob