I route outbound email through two SMTP gateways. My gateways are attached to different Nokia IP330s (CP 4.1 SP2 on IPSO 3.2.1) with T1's from different providers. Each gateway uses the appropriate provider's DNS for name resolution. The rulebases on the firewalls are the same - the gateways are permitted outbound SMTP and domain-UDP, and inbound SMTP. Both gatways functions correctly. NSLOOKUP works fine from either (DNS replies permitted statefully). On one firewall and not the other, the log is full of entries for packets dropped by the clean-up rule from the provider's DNS to the gateway on UDP with a service that CP-1 calls 4xxx (xxx varies) and a s_port of domain-UDP. I can't figure out what this traffic is (or is for). Again - the gateway is working fine. Any ideas? -- Anonymous Administrator [EMAIL PROTECTED] __________________________________________________ FREE voicemail, email, and fax...all in one place. Sign Up Now! http://www.onebox.com ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
