Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » US Telco Support » AT&T » AT&T Southeast » 327w firewall "state" rule times out in 10sec?!?
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·AT&T Southeast Forum FAQ ·AT&T Southeast Support ·AT&T Southeast Newsgroup Support ·AT&T Southeast Speed Test
how to setup new dsl access ACCOUNT w/o installing software »
« [General] Anyone denied call forwarding on busy from AT&T?  
AuthorAll Replies

impala

join:2008-03-08
Clemson, SC
·AT&T Southeast

1 edit		reply to impala
Re: 327w firewall "state" rule times out in 10sec?!?

so I've already mentioned that http; https; and ssh fail after approximately 10 seconds of inactivity when I enable the state action in the outbound firewall.

However, NNTP (port 123) and DNS (port 53) fail unless I enable the state action in the firewall; or explicitly enable them for dynamic NAT. They fail because the inbound firewall drops them AFTER NAT does it magic and converts the destination IP. I don't understand the difference between how NAT handles SSH; HTTP; HTTPS; and NNTP; DNS. I suppose SSH; HTTP; and HTTPS are hard-coded for dynamic NAT even though they do not show up in the list of enabled NAT client services? And NNTP; and DNS are not hard-coded and must be manually enabled?

And I still fail to understand how enabling the state action on HTTP; HTTPS; and SSH cause them to fail, even if they are using dynamic NAT.

to forum · permalink · · 2008-04-06 14:34:47 · Reply to this

impala

join:2008-03-08
Clemson, SC
·AT&T Southeast

Click for full size
NAT config
and for good measure, the NAT config:
to forum · permalink · · 2008-04-06 14:40:24 · Reply to this


sashwa
Pixie Cat Crunchin' n Foldin'
Premium,Mod
join:2001-01-29
Alcatraz
clubs:		 Let's see if we can find you some help in our AT&T Southeast forum.

Good luck.
to forum · permalink · · 2008-04-06 14:47:26 · Reply to this
Forums » US Telco Support » AT&T » AT&T Southeasthow to setup new dsl access ACCOUNT w/o installing software »
« [General] Anyone denied call forwarding on busy from AT&T?  

Wednesday, 09-Dec 13:05:07 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [197] Sprint Sued For Distracted Driving Death
· [81] 3G Network Test Says AT&T Is Tops
· [72] Mediacom Unveils 105 Mbps Pricing
· [71] AT&T Launching New 24 Mbps U-Verse Tier
· [65] Sprint Poised For A Turnaround?
· [58] WPA Cracker: Test WPA-PSK Networks In 20 Minutes
· [50] The Future Of Wi-Fi Is Bright
· [47] Site Leaks Yahoo, Verizon Fed Data Share Pricing
· [44] Microwaving Your Innards Is Not 'Extreme'
· [39] Verizon LTE: 5-12 Mbps Downstream
Most people now reading
· Comcast refused to install 400' feet. [Comcast HSI]
· The aftermath [World of Warcraft]
· HOA Headaches [General Questions]
· Cross Server Dungeon Experience [World of Warcraft]
· Is sleeping similar to being dead? [General Questions]
· Buzzing whatchamacallit in ceiling...?? Help identify. [Home Repair & Improvement]
· ICC strats [World of Warcraft]
· Windows 7 boot manager editing questions [Microsoft Help]
· Smoke detectors gone wild [Home Repair & Improvement]
· IMG 1.7 (IMG Updates and Discussion) [Verizon FIOS TV]