[j-nsp] SRX3600 weirdness

[Pavel Lunin]

2013/4/24 James S. Smith <JSmith at windmobile.ca>

I found that a bit strange myself, but we log all traffic flows through the
> firewall and the only communication going on was on port 993.


Traffic log is a bad clue for that sort of issues, really. You'd need to
use flow traceoptions to check out 1) whether any packet comes to the SRX
at all and 2) if yes, how it is processed within the flow subsystem. Just
start with a filter that narrows down the traffic to two IP address of the
DB and exchange servers (no ports).