|
-----BEGIN PGP SIGNED MESSAGE-----
Hash:
SHA1
Hello,
I have a FW-1 NG FP1 firewall running on solaris 7.
Space for /opt
was hogged today after doing a fw logswitch from the
command
terminal. As a consequence policies could not be saved, and
after
bouncing the firewall it did not come back up.
After identifying the problem and removing the
switched logs the log
viewer did not register any accepted packets. These had
track log,
and all I was viewing were rejected and dropped packets.
Another
consequence was that all connections had th_flags, message:
TCP
address spoofing warning in the info field. I
one'd
fw_allow_tcp_out_of_state and then cero' ed it back and did no
longer
perceive such behavior.
My Q is, does the firewall become unstable when
this kind of thing
happens? Is the log viewer part normal?
thanks,
oscar
Oscar Castaneda V.
SEFISA GRUPO NETCOM
-----BEGIN PGP SIGNATURE----- Version: PGPfreeware 6.5.8 for
non-commercial use < http://www.pgp.com>
iQA/AwUBPPv9gA95P8DghCRvEQLgOwCePPwTiiuY7Kl6lr90pebg4Gxc4WEAnAkQ
yGo551juOZIPXtrYx8oszQuH
=etkH
-----END
PGP SIGNATURE-----
| 
