|
Why is some web/e-mail traffic rejected, even though I opened for all
such traffic?
Problem description
Look for this kind of sequence in the
log (shown with Show newest on top):
The significant sequence is an accepted S flag followed by rejected
R flags.
This is caused by the connecting software sending flags in an
inappropriate order. The Dynamic session management in the firewall
rejects flags which aren't in the correct order.
What to do
- Change to Packet filter for the affected services.
- Notify the sending server administrator about the defect
software.
« BACK
|
