We recently converted to NAT from IP-passthru, and started getting a bunch
of these log entries:
-----------
ALARM NO: 5
DATE: Monday, Jul 10, 2000
TIME: 17:14:11
INTERFACE: EXT (xl0)
ALARM TYPE: Block
IP PACKET: TCP [a.b.c.d/80]-->[w.x.y.z/33242] l=1460 f=0x10
DETAILED DESCRIPTION:
IP packet was rejected.
----------
w.x.y.z is the ip-addr of our external interface, and a.b.c.d is some random
web site (in most cases). Why are these seemingly getting blocked? What's
wierder is that none of our users are having any problems surfing the web.
Thanks,
-Simon
