Hello all, I'm attempting to troubleshoot some connectivity and when running
fw ctl kdbg drop | grep a.b.c.d It shows fw_log_drop: Packet proto=17 a.b.c.d:5060 -> e.f.g.h:5060 dropped by fwchain_frag Reason: wait for more fragments In the past, when I have seen this "fw_log_drop" message, I can do a pcap and actually see the packets come in one interface and NOT leave on the corresponding outbound interface. In other words getting dropped. However with this particular traffic I am unable to see the firewall dropping anything when performing a pcap. The packets this command is showing as being dropped are actually NOT getting dropped. Is it something to do with this being UDP as opposed to TCP that causes fw ctl to show packets as being dropped when in fact they are not ? Thanks, Duke ******************************************* ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
