A strange TCP problem with PIX

Unanswered Question
Nov 3rd, 2005
User Badges:

I am trying to connect to a On-line Game through PIX. But the connection is never successful. After I bypass the PIX, and connect to the Game Server. The connection is OK, and I can play the game. The PIX OS is 7.0.2. And I have uploaded two Sniffer Caps. Can anyone help me to solve the problem?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
thomas.chen Wed, 11/09/2005 - 11:50
User Badges:
  • Silver, 250 points or more

I think the problem was due to NAT.


Fix the problem by Configuring the PIX with the service resetinbound command, available in PIX Software versions 4.2 and later. Normally, the PIX silently drops inbound connection attempts that are not permitted. When the PIX is configured with the service resetinbound command, the PIX sends an RST to unpermitted connection attempts. When the IDENT service receives an RST, it is notified that the IDENT service is unavailable for that client, and continues to process the original traffic that spawned the IDENT request. This significantly decreases the delay for IDENT processing


This Discussion