Re: FIN Timeout
- From: Private <Private@xxxxxxxxxx>
- Date: Fri, 26 Aug 2005 18:43:37 -0400
kevin@xxxxxxxxxxxxxxxxxxxxxxx wrote:
Can you mask your real IP addresses in the configuration and post it so that we can look. The "Fin Timeout is a normal function if there is no ACK received (FIN Timeout Force termination after 15 seconds await for last ACK ). Are you using FTP fixup? and what version are you using.Hi I have a problem with Cisco Firewall Pix 515E. I setup a FTP service on DMZ zone on Windows 2003 Server. Client can connect to the Ftp service from the Internet, but when he is working on Passive mode client is being disconnected after about 1 minute of inactive. On IIS inactive time is set to 3600 seconds and when I connect from internal site everything is fine- so I think it's a firewall problem. In firewall log I have this:
Built inbound TCP connection 915578 for outside:xx.xx.xx.xx/50601 (xx.xx.xx.xx/50601) to dmz:10.10.10.20/5512 (10.10.10.20/5512)
Teardown TCP connection 915578 for outside:xx.xx.xx.xx/50601 to dmz:10.10.10.20/5512 duration 0:00:01 bytes 20867 TCP FINs
Teardown TCP connection 914797 for outside:xx.xx.xx.xx/50765 to dmz:10.10.10.20/21 duration 0:37:20 bytes 686 FIN Timeout
Do I have something wrong with configuration.
Thank you for help Kevin
.
- Follow-Ups:
- Re: FIN Timeout
- From: kevin
- Re: FIN Timeout
- References:
- FIN Timeout
- From: kevin
- FIN Timeout
- Prev by Date: Re: PIX501 driving us nuts...!
- Next by Date: Re: checkpoint can cisco can't !!
- Previous by thread: FIN Timeout
- Next by thread: Re: FIN Timeout
- Index(es):
Relevant Pages
|
Loading
