On Thu, 25 Apr 2002, Dougherty, Joe wrote: > I did some sniffing on the firewall outside interface and the > interface of the target server, also outside the firewall. I wanted to see > if that partial packet ever gets out. I discovered that it doesn't, hence > the non-ack, and hence the login not being completed.
What I'd suggest is to tcpdump on both the incoming and outgoing interfaces of the firewall. Thus you could compare packet-by-packet what the the firewall receives and what it actually sends out. If the lost packet has for example bad checksum, then it is dropped by the IP stack itself. Regards, Jozsef - E-mail : [EMAIL PROTECTED], [EMAIL PROTECTED] WWW-Home: http://www.kfki.hu/~kadlec Address : KFKI Research Institute for Particle and Nuclear Physics H-1525 Budapest 114, POB. 49, Hungary
