I have a version 4 firewall that is not translating all of the packets in
sessions for one of my web servers. Clients on the Internet access the
external (translated address) and receive responses from that address at
the beginning of the HTTP session, but several packets after they switch to
HTTPS they start receiving replies from the server's internal address --
the firewall just stops translating that internal IP. The translation
rules are:
Any external_address Any --> Original internal_address
Original
internal_address Any Any --> external_address Original
Original
The firewall log shows the sessions and claims that the internal address
was translated, but a sniffer on the client side shows that the internal
address is slipping through the firewall.
Has anyone else run into this?
Thanks,
Matt
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
