[nsp] Pix 6.3(3) and UDP issues
Turpin Mark Contr AFCA/GCF
Mark.Turpin at scott.af.mil
Thu Sep 25 10:29:18 EDT 2003
> -----Original Message-----
> From: Scott Morris [mailto:swm at emanon.com]
> Sent: Thursday, September 25, 2003 9:09 AM
> To: Turpin Mark Contr AFCA/GCF; cisco-nsp at puck.nether.net
> Subject: RE: [nsp] Pix 6.3(3) and UDP issues
>
>
> No, no marking to be deleted... Just open connections, and
> were to port
> 53 udp. They had minimal byte counts, which suggests a DNS
> transaction.
> But otherwise, looked like a normal connection with high idle time.
>
> Scott
Hi Scott,
I'm curious: did you try adjusting the timeout values for
the UDP sessions?
I can see that perhaps helping in the event you have lots
of connections from numerous hosts. Whereas, if there
were a few hosts making connections, say a mail server
that was continuously making DNS queries, I could see
those connections remaining in your connection table.
cheers,
-Mark
More information about the cisco-nsp
mailing list