We believe this to be the case. We're no longer looking at it as a FW1 issue. There is something messy with the HP ProCurve core routers we're using where they are putting the VRRP in the block instead. However, when they do that (selectively, for some reason), they also maintain the source MAC address (thus the FW1 would never find it's way back, even if it did find its way through).
Thanks everyone for all your suggestions/feedback! On Thu, 28 Oct 2004 08:48:01 -0500, Previtera, Sal <[EMAIL PROTECTED]> wrote: > Could it be that he has ARP issues on that switch/router? > > -----Original Message----- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > Sent: Wednesday, October 27, 2004 3:28 PM > To: [EMAIL PROTECTED] > Subject: Re: [FW-1] Lost ssh access to SPLAT firewall! > > Is there anything else in this switch and VLAN other than the firewall and > management station? I believe you said in another email they are both on > this switch... could be something doing a TCP reset on the ssh port. > > Regards, > Matt Goddard > Security Information Team > Schneider National > 920-592-4787 > [EMAIL PROTECTED] > > ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
