Print

Welcome to Smokey's Security Forums.

Guests have only limited access to the board and it's features, please consider registering to gain full access!

Registration is free and it only takes a few moments to complete.

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[family]

Well, when i set up logging for all rules in policy with "Stateful inspection" flag, i find that they never get fired after firewall stuck. Stateful inspection is like broken. When i tried older versions of firewall, i find that in original 2.1.0.1 version stateful inspection rules work fine, and no stops occur, but in re-released 2.1.0.1 version (with embedded license till 06/11) they became broken.

[family]

OK, i will try with policy, and also with statically configured arp table. But firewall sometimes gettin stuck even with the "Allow all" prebuilt policy.

[Nail]

Hi.
Please try to create log-only rules with "continue" action in major tables:
Network table, IP Table, Access to network, Indirect access to network,
Network activity and so on.
Please check your APR table also.
Regards,
Nail.

[Tommy]

"Apply policy" has only affect for the current session. You have to use 'Set default' so that after a restart the chosen policy is aktive.

[family]

Something strange, if i right-click on current policy in "Configuration" window and select "Apply policy", it cure problem the same as firewall restart. May it be consequence of damaged jpfconfig.xml file? How to check configuration storage for integrity?

[Tommy]

It seams that the current Jetico version has problems with XP SP3, as more and more problem are reported.
Will talk to Nail from Jetico.

[family]

After the certain period of network inactivity (about five minutes) firewall seems like stop any outgoing packets processing, so no sites open, no pings reach anyone (even service provider gateway), IM client lose connection and so on. Packets just get into a blackhole, even when i enabled logging for all outgoing connections, i dont see any messages in the firewall log. But if i keep trying, after some minutes packets begin to go out again. If i shutdown the firewall, connectivity is restored immediately, and if ping process was active before firewall shutdown, it shows abnormal values for last packet latency - up to 100000 msec! I asked provider support to ping my host during a day in random intervals, and for incoming packets such troubles are not observed. Currently, i`m forced to keep 'ping -t' in a resident window as keep-alive to avoid lockups.

Jetico 2.1.0.4, Windows XP SP3. All of the power-saving features (standby, etc) in BIOS and OS are disabled.