Search:

Thanks for the followup, interesting. Are you running R75.47 or R77.20? There were quite a few IA fixes included in those particular releases.

I'd say it is almost certainly IA causing the drops based on the output of enabled_blades, although based on the non-IA rules getting caught in this you could quickly try disabling IPS with an "ips...

The hold_table is used to keep track of packets that the firewall kernel has sent to a daemon process for handling. The classic case is of course DNS lookups for domain objects but it is used for...

I seem to remember that there are some limited scenarios where this can be caused by Identity Awareness, specifically if there are invalid or unreachable domain servers configured. Assuming you are...