I have a web server that cannot be accessed on port 80. It is in the same rule with other web servers that can be accessed with no problem. The initial problem I was getting when examining the firewall logs was from SmartDefense "TCP sequence validator: dropped with invalid ACK number".
I disabled sequence verifier under the TCP SmartDefense settings.
Now the message I am getting in the logs is "th_flags:10 message info: Unexpected post SYN packet". Before the drop entry in the logs I see a successful accept for the host attempting to access the web server on port 80.
I just recently migrated to Check Point NG FP3 on Linux from NG FP2 on NT, before I migrated I was not seeing this problem. Any help would be appreciated. Thanks!
_________________________________________________________________ Get holiday tips for festive fun. http://special.msn.com/network/happyholidays.armx
================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
