SRX Services Gateway
Reply
Contributor
vencour
Posts: 93
Registered: ‎06-17-2010
0

Strange reset as session finish

[ Edited ]

Hi all, I manage some SRX cluster.

Some days we observe tcp reset in connection instead of finish and ack, All communication between server and client is from 8 packets. The 8th packet is in wireshark on server fin+ack. If we exchange firewall ... when client is in LAN only, then we get fin+ack, when the session is created via firewall, then we get 8th packet as tcp reset ...

We do not use security screen nor security flow features. So firewall should not change session establishment or closing? Have you some hint what to check?

 

Thanks V.

 

BTW this look like this PR ... http://prsearch.juniper.net/InfoCenter/index?page=prcontent&id=PR700301

Juniper Employee
Juniper Employee
AVD
Posts: 20
Registered: ‎03-18-2012
0

Re: Strange reset as session finish

Hi,

 

can you check if the RST is actually generated by firewall or it is coming from client/server?

 

sniffers on both the sides of the firewall should help in this case...

 

AVD

regards,
Avd
JNCIP-SEC

Please Mark My Solution Accepted if you think it helped!
Contributor
vencour
Posts: 93
Registered: ‎06-17-2010
0

Re: Strange reset as session finish

Thanks for response. Problem is solved now, bad application settings or config ...
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.