• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

three-way FIN-initiated handshake

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Firewall] >> Access Policies >> three-way FIN-initiated handshake Page: [1]
Login
Message << Older Topic   Newer Topic >>
three-way FIN-initiated handshake - 13.Mar.2013 11:03:46 AM   
imtiaz_latif

 

Posts: 1
Joined: 13.Mar.2013
Status: offline
I installed TMG server 2010 on Windows Server 2008 R2. I create three rules as follow
1- Allow Rule from Internal to some specific Domain Name Set or URL Sets to HR Active Directory User Group
2- Allow Rule from Internal to External to all users.
3- Deny Rule from Internal to TMG 2010 predefined category to all.
Rule number 3 is working fine but when I disable rules number 2 to test the internet connectivity on using HR user account, it’s not work and show the following error messages under log and reports,
Denied Connection SQ-TMG-2K8 3/13/
Log type: Firewall service
Status: The policy rules do not allow the user request.
Rule: Default rule
Source: Internal (192.168.165.13:137) Destination: Local Host (192.168.165.255:137)
Protocol: NetBios Name Service
javascript:ToggleList('AddInfoNode')Additional information
• Number of bytes sent: 0 Number of bytes received: 0
• Processing time: 0ms Original Client IP: 192.168.165.13

Denied Connection SQ-TMG-2K8 3/13/2013
Log type: Firewall service
Status: A packet was dropped because Forefront TMG determined that the source IP address is spoofed.
Rule: None - see Result Code
Source: Internal (192.168.165.13:137) Destination: Internal (192.168.165.255:137) Protocol: NetBios Name Service
javascript:ToggleList('AddInfoNode')Additional information
• Number of bytes sent: 0 Number of bytes received: 0
• Processing time: 0ms Original Client IP: 192.168.165.13

Closed Connection SQ-TMG-2K8 3/13/2013
Log type: Firewall service
Status: A connection was gracefully closed in an orderly shutdown process with a three-way FIN-initiated handshake.
Source: Internal (192.168.165.13:49931) Destination: Local Host (192.168.165.2:8080) Protocol: HTTP Proxy
javascript:ToggleList('AddInfoNode')Additional information
• Number of bytes sent: 376 Number of bytes received: 1088
• Processing time: 0ms Original Client IP: 192.168.165.13

_____________________________

Imtiaz Latif
Post #: 1

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Firewall] >> Access Policies >> three-way FIN-initiated handshake Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts