[c-nsp] disable stateful firewall on PIX?
Adam Greene
maillist at webjogger.net
Thu Apr 13 15:47:20 EDT 2006
Thanks Mike, and for the other replies I got offlist.
The problem seems to be that the PIX is blocking the inbound SYN/ACK on the
handshake if it didn't transmit the initial SYN outbound, even if I do a
"permit ip any <netblock>".
Grrrr...
Adam
From: "Michael K. Smith"
> Hello Adam:
>
> I'm not sure if this is the answer you're looking for, but it sounds like
> you're having difficulty with the reverse path verification process. If
> that is the case, try:
>
> No ip verify reverse-path interface <if_name>
>
> If that's not it, sorry for the noise!
>
> Mike
---
[This e-mail was scanned for viruses by our AntiVirus Protection System]
More information about the cisco-nsp
mailing list