I route all Internet traffic through an IPsec tunnel except the
connection to the remote tunnel peer. I have been able to get SSL VPN
connections, FTM acknowledgements, SNMP, etc. working in this way
however since upgrading from 6.0.14 to 6.0.15 I ha...
The resolution to the underlying problem is to stop using trusted hosts
and instead use a combination of custom local in policies (for traffic
within broadcast domains that needs to be denied and allowed) and normal
firewall policies (for traffic fro...
Adding the SNMP monitor to my admin login's trusted hosts list allowed
this traffic. How would I allow this monitoring traffic without also
allowing admin logins from this IP address? Likewise with the FTM push
notification server at port 4433. I can...
You are correct. Here is the updated debug with a more expanded filter
as well as the full context. fg90d $ di de dis fg90d $ di de flow filter
clear fg90d $ di de flow filter addr 1.2.3.4 fg90d $ di de flow trace
start 1000 fg90d $ di de en fg90d $ ...
