Running Raptor 6.5.1. Redirecting all http connections on a certain IP number to a web server in our DMZ. For some reason, people from certain locations are unable to contact the web server.
By sniffing network traffic both in and out of the firewall, I've found that the firewall receives the TCP SYN packet from all hosts, but only redirects it in some cases. (I.e. the TCP SYN packet does not always "come out" of the firewall interface on the DMZ side and thus the TCP connection is never established.)
Nothing appears in the firewall log in the cases where the SYN packets are not redirected.
When comparing both SYN packets that are redirected and those that are not, apart from the obvious (sender IP, sequence number etc.), nothing differs.
As far as I can see, the firewall configuration should allow http access to the DMZ from all IP numbers, but it does not -- and in those cases, nothing is logged.
Has anyone had any similar problems? Does anyone have any suggestions on what to do?
Thanks in advance!
rgds, Gilbert
By sniffing network traffic both in and out of the firewall, I've found that the firewall receives the TCP SYN packet from all hosts, but only redirects it in some cases. (I.e. the TCP SYN packet does not always "come out" of the firewall interface on the DMZ side and thus the TCP connection is never established.)
Nothing appears in the firewall log in the cases where the SYN packets are not redirected.
When comparing both SYN packets that are redirected and those that are not, apart from the obvious (sender IP, sequence number etc.), nothing differs.
As far as I can see, the firewall configuration should allow http access to the DMZ from all IP numbers, but it does not -- and in those cases, nothing is logged.
Has anyone had any similar problems? Does anyone have any suggestions on what to do?
Thanks in advance!
rgds, Gilbert