[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] State Table Problems

To: "'fw-1-mailinglist@lists.us.checkpoint.com'" <fw-1-mailinglist@lists.us.checkpoint.com>
Subject: [FW1] State Table Problems
From: "Rogers, Bob" <BRogers@RWD.com>
Date: Tue, 9 Nov 1999 10:10:00 -0500

    [ The following text is in the "iso-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set. Some ]
    [ characters may be displayed incorrectly. ]


I have a perplexing problem:

On FW 4.0, build 4064 (NT 4.0, SP4), I will have 1 IP address that cannot
enter the network.

I will explain:
The IP address X.X.X.154 is a client machine on the west coast.  An attempt
to ping that machine from within the network results in a log indicating
that the packet left the network through the FW successfully, however, the
reply never comes back in.  There is no log indicating a drop or a reject.
Sitting outside the firewall and pinging results in successes.  X.X.X.155
and X.X.X.153 can be successfully pinged from within the network.

Clearing the State directory of all entries will result in the address in
question being allowed back through the FW, however, if I push an update to
the rule base, connectivity dies again, and cannot be regained till the
state directory is cleared again.

Any Ideas???

Bob Rogers, 
Network Engineer
MIS Network Infrastructure Team
brogers@rwd.com

10480 Little Patuxent Pkwy.
RWD Bldg. Suite 1200
Columbia, MD  21044-3530
410.715.5327
  


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: [FW1] FireWall license!
Next by Date: Re: [FW1] SMTP Telnet
Prev by thread: [FW1] FireWall license!
Next by thread: [FW1] State Table Problems
Index(es):
- Date
- Thread