RE: [FW1] unknown established tcp packet

Felicetti, Stephen A. Fri, 20 Apr 2001 06:13:46 -0700

I had the same problem, but with medical instruments connecting to terminal
servers. I used the fix on phoneboy, and it resolved the problem. However,
to date, noone can seem to explain why this is happening. I read the white
paper on checkpoint and TCP connections (I got the link from this list, but
can't remember the author).

The TCP connection is established, and with a 3600s timeout, the fw should
not be dropping the packets.

This is similar to Josef's problem. The connection is made, and in 5 minutes
the packets begin dropping, well within the timeout period. 

Instead of just providing a solution of reverting back to the 4.0 version of
handling TCP connections, does anyone really know why this is happening and
whether Checkpoint plans to fix it?

Happy with CP but fustrated....
Steve

-----Original Message-----
From: Jason Witty, CISSP [mailto:[EMAIL PROTECTED]]
Sent: Friday, April 20, 2001 7:45 AM
To: Hartmann, Josef; [EMAIL PROTECTED]
Subject: Re: [FW1] unknown established tcp packet



http://www.phoneboy.com/faq/0408.html .  HTH.

Jason

At 10:19 AM 4/20/01 +0200, Hartmann, Josef wrote:
>
>Hi,
>
>
>still I am trying to setup Legato Networker Backup in a DMZ over FW-1
>4.1SP3.
>Unfortunately it does not complete as the status messages are lost (as far
>as I can tell by know).
>
>These messages are sent over a tcp connection; the connection is
established
>properly (SYN, SYN/ACK, ACK -> FW-1 accepts these packets) then it takes
>about 4min, 5min during them no packets are transmitted, after that packets
>are transmitted however these are dropped by FW-1 (info field: unknown
>established tcp packet).
>Now I don't know exaclty why: TCP session timeout is set to 600s,
connection
>is established and the session timeout is not yet down to zero.
>
>
>Cheers,
>
>Josef
>
>
>===========================================================================
=====
>     To unsubscribe from this mailing list, please see the instructions at
>               http://www.checkpoint.com/services/mailing.html
>===========================================================================
=====
>
>


============================================================================
====
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
============================================================================
====


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================
RE: [FW1] unknown established tcp packet

Reply via email to
