Check your firewall policy properties, specifically Security Policy/TCP
Session Timeout. Default is 3600 seconds.
>From docs:
"The time period after which a TCP session will be considered to have timed
out." (from its state table)
"Firewall-1 inspects each and every TCP packet against the Security Policy.
The first packet of each session is checked against the Rule Base. If the
first packet is accepted, Firewall-1 adds the session to an internal table
of open sessions. Subsequent packets of an established TCP session are
checked against the table rather than against the Rule Base."
"If a TCP session times out, then the session is removed from Firewall-1's
state table. If a packet later arrives for that session, Firewall-1 checks
that packet." (against the Rule Base)
Greg S.
-----Original Message-----
From: Rytting, Chad (MED, OEC) [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 22, 2000 11:21 AM
To: '[EMAIL PROTECTED]'
Subject: [FW1] Session Timeout
I seem to be having a problem with session timeouts. Does FireWall-1
have a session timeout setting that will disconnect active sessions
after a specified time? If so, how would I go about changing that on
FireWall-1 4.1 on Solaris 2.6?
Thanks,
Chad Rytting
Unix Administrator
GE OEC Medical Systems
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
