Re: [fw-wiz] PIX: immediately applying access rules to established connections

---

• From: "R. DuFresne" <dufresne@xxxxxxxxxxx>
• Date: Fri, 16 Jun 2006 14:28:25 -0400 (EDT)

---

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



rebot or recycle the firewall will do the trick.

Or drop all open connections and make them re-establish. not really
rocket sience, kinda like users on a unix server, you make changes to teir
env and or login credentials and they are not picked up till the uses
logsout and back in.

thanks,

Ron DuFresne


On Wed, 14 Jun 2006, Vahid Pazirandeh wrote:

Hi all,

I noticed that after I made some changes to my access-lists with a PIX 7.1(2),
the rules only applied to new connections being made. The connections that
were already established (like tcp sessions) were unfortunately not affected.

How can I affect all currently established connections with my new access-list
rules? Is there a "clear" command that'll do the trick?

Thanks for reading. :-)

-Vahid

=============================================
"Make it better before you make it faster."
=============================================

__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

- --
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com
http://sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629

...We waste time looking for the perfect lover
instead of creating the perfect love.

-Tom Robbins <Still Life With Woodpecker>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFEkvhMst+vzJSwZikRAvU/AJ9+bgoBHYQfG+p11ORRk3AmTNo9uwCdEyZi
dyf1FKHF6LFjRkm2SyI7qHI=
=fbZJ
-----END PGP SIGNATURE-----
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

---

• References:
  • [fw-wiz] PIX: immediately applying access rules to established connections
    • From: Vahid Pazirandeh

• Prev by Date: Re: [fw-wiz] WebDAV on Symantec 5400
• Next by Date: [fw-wiz] PIX 6.x - Acces rules on a VPN tunnel.
• Previous by thread: Re: [fw-wiz] PIX: immediately applying access rules to established connections
• Next by thread: [fw-wiz] Yeah - new syslog server
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Where can I find winged head bolts? ... The trick is finding the correct size in a reasonably small quantity. ... I'll see if I can use some of my connections to locate a supplier. ... Prev by Date: ... (rec.games.pinball) Re: Listing all inbound connections. ... connections. ... From a command prompt: ... did the trick. ... (microsoft.public.windowsxp.network_web) Re: [fw-wiz] PIX: immediately applying access rules to established connections ... Actually I had tried typing "clear xlate" and that didn't help. ... How can I affect all currently established connections with my new ... Do You Yahoo!? ... Mail has the best spam protection around ... (Firewall-Wizards) Re: [fw-wiz] Firewall scaling ... Total nonsense! ... bittorrent to produce greater then 320 connections apeice, ... I've seen 3500+ connections from individual computers. ... ...We waste time looking for the perfect lover ... (Firewall-Wizards) [fw-wiz] PIX: immediately applying access rules to established connections ... I noticed that after I made some changes to my access-lists with a PIX 7.1, ... the rules only applied to new connections being made. ... Do You Yahoo!? ... Mail has the best spam protection around ... (Firewall-Wizards)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > Firewall-Wizards  > 2006-06