Firewall Wizards mailing list archives

Re: POP3 and SMTP slow on Linux since we installed a PIX

From: Siglite <siglite () criticalstop com>
Date: Sat, 14 Aug 1999 13:07:56 -0400 (EDT)

Yes, by dropping instead of rejecting ident requests.  Dropping them
generally causes the pop3 and sendmail daemons to wait on ident timeout.
If you reject them at the firewall, (this is particularly applicable when
using NAT) the daemons stop waiting for the ident packets to come back,
and immediately allow the connection.  The other option is to configure
sendmail and pop3 to not wait on the idents.

/*-----------------------------------*/
/* I live with FEAR every day.       */
/* But, sometimes, she lets me RACE. */
/*-----------------------------------*/

KT Morgan
Network Engineer
Checkpoint Firewall-1 CCSA/CCSE
Microsoft MCP
Software Systems Group, Inc

On Fri, 13 Aug 1999, Salatino, Dave wrote:

We installed a PIX firewall and ever since POP and SMTP have been slow to
establish a connection to the mail server on the DMZ from the inside. Has
anyone here seen the same symptom?

TIA Dave

Current thread:

POP3 and SMTP slow on Linux since we installed a PIX Salatino, Dave (Aug 13)
- Re: POP3 and SMTP slow on Linux since we installed a PIX Marcus J. Ranum (Aug 14)
- Re: POP3 and SMTP slow on Linux since we installed a PIX Siglite (Aug 14)
- Re: POP3 and SMTP slow on Linux since we installed a PIX Matt Dunn (Aug 14)
- Re: POP3 and SMTP slow on Linux since we installed a PIX Eric Vyncke (Aug 14)
  - Re: POP3 and SMTP slow on Linux since we installed a PIX Mike Barkett (Aug 17)
- RE: POP3 and SMTP slow on Linux since we installed a PIX gordon . douglass (Aug 15)
- <Possible follow-ups>
- Re: POP3 and SMTP slow on Linux since we installed a PIX Robert Graham (Aug 14)
- RE: POP3 and SMTP slow on Linux since we installed a PIX Frank W. Keeney (Aug 17)
- RE: POP3 and SMTP slow on Linux since we installed a PIX sean . kelly (Aug 17)