Re: Does the PIX have a problem handling PSH ACK TCP?

philstephenson · ‎08-12-2010

I have a problem currently with printing through a PIX firewall. The traffic is outbound through a PIX 525 and is a TCP connection on destination port 9100.

Packet capture has shown the TCP handshake to be SYN, SYN ACK, ACK then PSH ACK, and I cannot get the print to work.

I google'd "printing 9100 PIX" and found a couple of relevant results which point to the PIX dropping this type of traffic as a security risk.

Is this the case, and if so, as it is very legitimate traffic, what can be done to solve it ?

Any ideas please?

Many thanks

Phil Stephenson

Marcin Latosiewicz · ‎08-13-2010

Phil,

Can you share the packet captures (pcap format, 1500 bytes), software version of PIX, logg message displayed when PIX is dropping this packet.

Marcin

Kureli Sankar · ‎08-13-2010

Pls. enable logging as well and see what the syslogs say.

conf t

loggin on

logging buffered 7

exit

sh logg | i x.x.x.x

where x.x.x.x is the printer ip

-KS

rameshwarhiwale · ‎08-15-2010

also let us know how printer is connected and if any Fp servers are used.

jdavidreynolds · ‎09-01-2010

I have this same problem. Have you found a solution?

Edit...Eureka! All I needed to do was "clear xlate" for it to pick up my new configuration. Now it works. Sorry, I'm new at this.