Re: [fw-wiz] Cisco ASA firewall: SQLnet inspection: buffer limit



Hello--

Try disabling the inspection.

policy-map global_policy
class inspection_default
no inspect sqlnet

Your policy-map name and class name may be different.


On Thu, Jan 15, 2009 at 5:27 AM, Haim [Howard] Roman <roman@xxxxxxxxx>wrote:

Some friends have a Cisco ASA firewall, firmware version 8.0.4. Behind the
firewall is a Oracle database.

This firewall has an SQLnet inspection feature. However, the packet
reassembly buffer has a limit of 8 kbytes. Many of the SQL queries are
bigger than this, and they get blocked. Is there a way to increase this?
(not sure how big they need). In the meantime, they have to disable this
feature.

Thanks

--
-------------------------------------------------
Haim (Howard) Roman
Computer Center, Jerusalem College of Technology
roman@xxxxxxxxx

_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards