|
I've got several
users accessing exchange through a Nokia 650 running FW-1 v4.1 SP2.
Several users have been complaining about slow connections to the MS Exchange
server. When checking the logs, I see several drops on Rule 0, with the
infamous 'Unknown established connection' message.
I tried adding
'#define ALLOW_NON_SYN_RULEBASE_MATCH' to
$FWDIR/lib/fwui_head.def like Phoneboy's site said, but their doesn't
appear to be any change after cycling the firewall. Can anyone tell me how
to revert to the old behavior, or find out why my change to fwui_head.def
was not accepted? It looks like these drops are causing the client to sit
and wait for it's timeout, rather than retry immediately. I'm sure rejects
would probably help, but I can't find a way to do that
either.
Thanks in advance
for the help!
Jeff Jarmoc - CCNA,
MCSE
Network Analyst - Grubb &
Ellis
| 
