Screen OS

Hi,

With SSGxx (20 & 550) version 6.3.0r14.0 and web filtering not enable I can not reach through split tunneling the web site:

http://www.ntcia.com:2000

The end of the debug capture shows:

 **** pak processing end.
  packet dropped, ASP tcp proxy will rebuild a new one
  packet dropped,   unkown type packet

............................................................

I attached the debug file txt

Did someone faced the same one day? Any idea would be appreciated. Thx

Alainfinitif

Attachment(s)

wwwntciacom.txt   13 KB 1 version

Hello.

Please try disabling sccp alg.  This ALG looks for traffic on port 2000.  Since the packets seen are HTTP rather than Cisco Skinny packets, the ALG drops the packets.

http://kb.juniper.net/InfoCenter/index?page=content&id=KB13509

I believe the command will be

unset alg sccp enable.

Hope this helps.

Regards,

Sam

---

@samc wrote:

Hello.

 

Please try disabling sccp alg.  This ALG looks for traffic on port 2000.  Since the packets seen are HTTP rather than Cisco Skinny packets, the ALG drops the packets.

 

http://kb.juniper.net/InfoCenter/index?page=content&id=KB13509

 

I believe the command will be

 

unset alg sccp enable.

 

 

Hope this helps.

 

Regards,

Sam

---

---

@samc wrote:

Hello.

 

Please try disabling sccp alg.  This ALG looks for traffic on port 2000.  Since the packets seen are HTTP rather than Cisco Skinny packets, the ALG drops the packets.

 

http://kb.juniper.net/InfoCenter/index?page=content&id=KB13509

 

I believe the command will be

 

unset alg sccp enable.

 

 

Hope this helps.

 

Regards,

Sam

---