Options
tcp invalid connection state
In our Lab I was setting up a storage array to be on its own VlAN. The problem I have is I can not connect to the array controller from VLAN 1, when I try I get The following error
2023-12-11 00:37:48 Deny 192.168.10.114 192.168.100.2 https/tcp 64409 443 LAB Network Firebox tcp invalid connection state 40 128 (Internal Policy) proc_id="firewall" rc="101" msg_id="3000-0148" tcp_info="offset 5 A 2181087818 win 516"
I try this from any other VLAN and use the same firewall rule it works. Its Just any device on Vlan 1 that fails to connect. Not sure how to look at the (Internal Policy)
0
Sign In to comment.
Comments
This is on a M270 running 12.10.B685791
Review this:
Firebox rejects a network connection with "tcp invalid connection state" log message
https://techsearch.watchguard.com/KB?type=Article&SFDCID=kA16S000000gDP6SAM&lang=en_US
Check for asymmetrical routing - the path that packets take to & from the NAS unit are different.
asymmetrical routing can often result when there are 2 NICs on a device