I have client that needs an exception created to allow connection
through a
VPN to a Windows box running remotely anywhere. I have created all
manner
of filter exceptions including allowing all tcp traffic from the IP
in
question to the IP at this site (simultaneously creating a static in
the
other direction.). When I run "set filter debug = on" and "set tcp
discard
filter debug = 1" I see the block happen and receive the message that
the
"filter for the above packet does not exist in filter database". If I
drop
the filters the traffic flows correctly. I have confirmed that TCP is
the
protocol. The protocol flag is fin psh ack. I am hoping there is
something
simple I am missing like you can't use port 2000 or it's blocked by...
I
have 75 or so filter exceptions functioning perfectly. I have deleted
the
filters from NDS, run Dsrepair functions to ensure healthy DS, and
remigrated my filters, but I still have no luck. Any help or thoughts
would
be appreciated.
Thanks,
Pierre