Has anyone seen a PIX deny connections to statically built connections that
have valid conduits?
%PIX-2-106001: Inbound TCP connection denied from src/port to dst/port flags
FIN ACK
%PIX-2-106001: Inbound TCP connection denied from src/port to dst/port flags
ACK
%PIX-2-106001: Inbound TCP connection denied from src/port to dst/port flags
RST ACK
%PIX-2-106001: Inbound TCP connection denied from src/port to dst/port flags
RST
One example that I have is some hotmail servers that I will sendmail from
will be denied. NOTE
I said "some", meaning some work some don't. I will see the above error
message with the dst/port being my mail server.
In addition I see this on some web services.
It seems to be an intermitten problem but I can't understand why the PIX is
allowing the ESTABLISHED to occur then
for no apparent reason starts to block the ACK's. and others...
TIA,
Gordon Douglass
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
