Zone Firewall Dropping FTP

Posted on 2013-09-27
Medium Priority
Last Modified: 2013-09-30
I have zone firewall setup to inspect all traffic from the inside including network.  I get the dropped session below when I try to use winscp to connect via FTP to a WIndows ftp server.  Any idea what's going on?

      Informational      213704: 16422614: Dropping tcp session due to Stray Segment with ip ident 0
Question by:amigan_99

Accepted Solution

Brian earned 2000 total points
ID: 39534347
Cisco defines that error as:
Stray Segment -  A TCP segment is received that should not have been received through the TCP state machine such as a TCP SYN packet being received in the listen state.

I would turn the logging level up and see what else might be going on. Judging from this thread https://supportforums.cisco.com/thread/2056297 you may want to upgrade version or change some queue lengths.

Author Closing Comment

ID: 39534355
Thank you.

Featured Post

The 14th Annual Expert Award Winners

The results are in! Meet the top members of our 2017 Expert Awards. Congratulations to all who qualified!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
If you try to migrate from Elastix to Issabel, you will face a lot of issues. These problems are inevitable but fortunately, you can fix them. In the guide below, I will explain how I performed the migration while keeping all data and successfully t…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

597 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question