Re: [FW-1] smtp security server error

Subject:	Re: [FW-1] smtp security server error
From:	"Covington, Chris" <Chris.Covington AT PLUSONE DOT COM>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Wed, 24 Aug 2005 13:37:56 -0400

Why don't you instead use something more reliable like a Linux/*BSD box
running Postfix and using amavisd-new / clamav / SpamAssassin for "smtp
security"? 


---
Chris Covington
IT
Plus One Health Management
75 Maiden Lane Suite 801
NY, NY 10038
646-312-6269
http://www.plusoneactive.com


-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Shiroma
Dassanayake
Sent: Wednesday, August 24, 2005 5:25 AM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: Re: [FW-1] smtp security server error

Dear all
 
This list is great. Thanks to Reinhard and Jorn Dahl-Stamnes. The reboot
worked. Hopefully it won't suddenly stop working again.
 
Regards
Shiroma 

Reinhard Stich <r.stich AT INTERNET-SECURITY DOT AT> wrote:
hi,

just try a cprestart or reboot...

cheers
reinhard

At 07:35 24.08.2005, you wrote:
>Dear all
>
>I have enabled an smtp resource on all incoming smtp to the mailserver.

>Up till yesterday this resource was working fine.
>Yesterday smtp got dropped with the following error string "TCP packet 
>out of state: First packet isnt SYN tcp flags: RST". The flags change 
>between RST and SYN-ACK. It cant be attributed to a bad packet, because

>all incoming smtp is dropped. In an effort to recitfy this situation, I

>removed the smtp resource and installed the policy. Incoming smtp did 
>come in but all the unwanted smtp came in as well. So I re-inserted the

>smtp resource into the rulebase and installed the policy. After this 
>the log tab of Smartview Tracker did not display any incoming smtp at 
>all, there are no dropped smtp packets either. The active tab displays 
>incoming smtp. No incoming smtp arrives at the inbound queue of the 
>mailserver. The spool directory in the firewall is empty. Telnetting to

>the mailserver on port 25 from the firewall returns the mailserver MTA 
>version but the "Ch!
> eckpoint
> Firewall-1 secure ESMTP server " message is not displayed.
>
>I once again removed the smtp resource and installed the policy. Now 
>there are mail messages in the inbound queue of the mailserver, but all

>the unwanted mail is coming in as well.
>
>Seems like the security server has just stopped working.
>
>Smartcenter server runs NG AI R55 HFA-14 module runs NG AI R55 HFA-09
>
>
>I am really stumped. Any ideas are greatly appreciated.
>
>Regards
>
>
>
>---------------------------------
> Start your day with Yahoo! - make it your home page
>
>=================================================
>To set vacation, Out-Of-Office, or away messages, send an email to 
>LISTSERV AT amadeus.us.checkpoint DOT com
>in the BODY of the email add:
>set fw-1-mailinglist nomail
>=================================================
>To unsubscribe from this mailing list,
>please see the instructions at
>http://www.checkpoint.com/services/mailing.html
>=================================================
>If you have any questions on how to change your subscription options, 
>email fw-1-owner AT ts.checkpoint DOT com 
>=================================================

--
Reinhard Stich ASSIST R.Stich AT internet-security DOT at Internet Security AG,
1150 Wien, Johnstrasse 29
Tel: +43 1 3709440 RS784-RIPE Fax: +43 1 3709440-333 

=================================================
To set vacation, Out-Of-Office, or away messages, send an email to
LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your subscription options,
email fw-1-owner AT ts.checkpoint DOT com
=================================================

                
---------------------------------
 Start your day with Yahoo! - make it your home page 

=================================================
To set vacation, Out-Of-Office, or away messages, send an email to
LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your subscription options,
email fw-1-owner AT ts.checkpoint DOT com
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] smtp security server error, Shiroma Dassanayake Re: [FW-1] smtp security server error, Reinhard Stich Re: [FW-1] smtp security server error, Shiroma Dassanayake Re: [FW-1] smtp security server error, Covington, Chris <=

Previous by Date:	Re: [FW-1] Smartdefense crash after last update, Covington, Chris
Next by Date:	Re: [FW-1] Smartdefense crash after last update, Smith, Al
Previous by Thread:	Re: [FW-1] smtp security server error, Shiroma Dassanayake
Next by Thread:	[FW-1] Checkpoint's Firewall Fail over solution, Vedantam sekhar
Indexes:	[Date] [Thread] [Top] [All Lists]