PIXOS 7.2(1) blocking web traffic?

Unanswered Question
May 10th, 2007

Clients on our LAN access websites using web proxy servers. One website (that is accessible from other LANs) does not work either through the proxy or directly.

I can see conns (state table entries) between the clients and the site but no I flag to show inbound data:

TCP out in idle 1:44:44 bytes 920 flags UfO

TCP out in idle 1:15:06 bytes 1038 flags UfO

The firewall rules allow access to any website.

Has anyone had similar issues with their firewall? Can anyone advise me on how to check if the firewall is filtering return traffic from the website?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
hoogen_82 Thu, 05/10/2007 - 10:17

If your firewall is permiting you to setup connections to websites on port 80 your fine your firewall would not block return traffic.

Post your configuration. One suggestion upgrade to 7.2.2.



vitripat Thu, 05/10/2007 - 11:18

The flags in the above connections is showing that a "FIN" has been sent by the host on inside.

f - inside FIN

Need to find why the inside client is sending a FIN for the connection. Configuration and syslogs will help.



plwalsh Wed, 05/16/2007 - 02:39

Thaks for the replies. I am upgrading to 7.2(2). The inside clients FIN'd the connections as there was no INBOUND data received from the webserver. The website admin has informed me that they are having some DNS problems that may be the cause.


This Discussion