Quote:
Originally Posted by Thorpuse  For Network objects, you can specify whether the broadcast address is included or not included in the object properties. You may need to toggle this for the relevant network object. |
It's a good thought, but this is a regular Internet user who is attempting to use our a web application that our company provides. There is no network object defined for him. (The rule is allow source: any, destination: webserver, protocol: http/https)
The fact that a 'tcpdump -i eth1.443' on the interface doesn't show the SYN-ACKs concerns me, as I would think I'd see every packet, even if the firewall was discarding it. So it seems to me that it's the NIC or NIC driver that must be dropping the packet.
The are Intel Pro/1000 quad port cards, and on the list of supported NIC's.