Hi Firewall Gurus Recently I observed a very strange behaviour on Firewall 1 (4.1 SP5). With the command 'fw tab -t connections -u' the current state table is printed showing established connections with source ip:port, dest. ip:port and the timeout value (curr. secs/total secs). The current timeout for the ssh connection to the firewall itself is increased to the total of default 3600 seconds each time a packet travels thru the open connection, whereas for other connections like for example telnet, it doesn't increase the amount of remaining seconds on activity. Why ??
I decreased the default of 3600 seconds for the mentioned tcp timeout to 1 min just for a test. I set up a connection, waited for 60 seconds not generating any packet. It disappeared from the state table as expected, so this connection should have been blocked. But nevertheless I succeeded to still communicate thru this connection and it spot up again in the state table. Why ?? Thanks in advance for an answer .... Cheers, Phibo _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] For Account Management (unsubscribe, get/change password, etc) Please go to: http://lists.gnac.net/mailman/listinfo/firewalls
