Re: [fw-wiz] Cisco ASA firewall: SQLnet inspection: buffer limit


Try disabling the inspection.

policy-map global_policy
class inspection_default
no inspect sqlnet

Your policy-map name and class name may be different.

On Thu, Jan 15, 2009 at 5:27 AM, Haim [Howard] Roman <roman@xxxxxxxxx>wrote:

Some friends have a Cisco ASA firewall, firmware version 8.0.4. Behind the
firewall is a Oracle database.

This firewall has an SQLnet inspection feature. However, the packet
reassembly buffer has a limit of 8 kbytes. Many of the SQL queries are
bigger than this, and they get blocked. Is there a way to increase this?
(not sure how big they need). In the meantime, they have to disable this


Haim (Howard) Roman
Computer Center, Jerusalem College of Technology

firewall-wizards mailing list