If tcp/113 (auth/identd) is denied explicity or implicity by an access list, is a reset sent to the source by default? If not, how do you configure the fwsm so that it sends a reset in this case? This would be so that outbound email connections dont hang if the destination server sends an identd request, and has to wait for it to timeout before it processes the smtp session.
That's the ticket! Although, if I read the description right in the command reference, this will send resets for all denied tcp syn's. You'd think there would be an argument so you could selectively send resets based on the tcp port being accessed. Anyway, thanks!
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...