Hi all ,
I seem to have a lot of following enteries of this type in my logs
TCP packet out of state: First packet isn't SYN
tcp_flags: FIN-ACK
I wonder about the security risk of disabling the option " Drop out of
State Tcp Packets ". I understand that if I disable the option the
Packet received which is out of state will then just be compared against
the rulebase. I have been advised not to disable it .
I need to understand what risks are there in disabling this feature as
the traffic that we receive is via a network with which sends messages
At different intervals in a day and then we get the above message in the
logs
However I also have a network connected to the internet do I don't wan
to make changes globally that will be a risk.
Please advise
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
