Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] Smtp dropped on rule 0

To: [email protected]
Subject: Re: [FW-1] Smtp dropped on rule 0
From: [email protected]
Date: Thu, 23 May 2002 15:26:07 -0400
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Title: Message

Alexey,

That error is generally (at least I have never seen it to be) an issue with the firewall. The explanation on phoneboy.com is excellent, and you can get a better understanding of the state table from Lance Spitzer at http://www.enteract.com/~lspitz/fwtable.html. I would venture a guess that some of the connections you had were not properly closed when you rebooted and perhaps they are still trying to continue communication, though there is no entry in the state table for them.

Check what's happening with the 3way handshake. I think the time out is 180seconds. This will also occur with async routing (something that's bad anyway).

HTH,

Alex

-----Original Message-----
From: Alexey Vitashkevich [mailto:[email protected]]
Sent: Thursday, May 23, 2002 9:50 AM
To: [email protected]
Subject: [FW-1] Smtp dropped on rule 0

Hi. I updated 8 firewalls on NOKIAs IP 330 to IPSO 3.5.1 and CP 4.1 SP5a.

Since then on two of those firewalls I have very strange problem with SMTP packets dropped on RULE 0 with error:

Unknown established TCP packet.

The phoneboy solution didn't help and I really don't know what to do next.

Any ideas ?

Alexey Vitashkevich

Senior Security Consultant - MCSE, CCSE, CNE

Phone :ext. 107

Fax :

Mobile : (917) 476-8313

www.nextgeninter.net

Prev by Date: [FW-1] unsubscribe
Next by Date: Re: [FW-1] unsubscribe
Previous by thread: [FW-1] Smtp dropped on rule 0
Next by thread: Re: [FW-1] securemote client drops connection
Index(es):
- Date
- Thread