-----BEGIN PGP SIGNED MESSAGE----- Hash:
SHA1
Hello,
I have a FW-1 NG FP1 firewall running on solaris 7.
Space for /opt was hogged today after doing a fw logswitch from the
command terminal. As a consequence policies could not be saved, and
after bouncing the firewall it did not come back up.
After identifying the problem and removing the
switched logs the log viewer did not register any accepted packets. These had
track log, and all I was viewing were rejected and dropped packets.
Another consequence was that all connections had th_flags, message:
TCP address spoofing warning in the info field. I
one'd fw_allow_tcp_out_of_state and then cero' ed it back and did no
longer perceive such behavior.
My Q is, does the firewall become unstable when
this kind of thing happens? Is the log viewer part normal?
thanks,
oscar
Oscar Castaneda V. SEFISA GRUPO NETCOM
-----BEGIN PGP SIGNATURE----- Version: PGPfreeware 6.5.8 for
non-commercial use < http://www.pgp.com>
iQA/AwUBPPv9gA95P8DghCRvEQLgOwCePPwTiiuY7Kl6lr90pebg4Gxc4WEAnAkQ yGo551juOZIPXtrYx8oszQuH =etkH -----END
PGP SIGNATURE-----
|