Support Center > Search Results > SecureKnowledge Details
Outbound IP fragmented multicast packets cause Security Gateway crash Technical Level
  • R80.20 Security Gateway drops IP fragments with a multicast destination and eventually crashes.

  • Kernel debug shows:

    @;PID;[cpu_2];[fw4_1];fw_log_drop_ex: Packet proto=17 192.x.x.x:40822 -> 225.x.x.x:5001 dropped by fwfrag_expires Reason: timeout has expired for fragment;
    @;PID;[cpu_2];[fw4_1];fwfrag_expires: IP fragment expiration reached, freeing cookies;

  • syslog includes messages like< [SIM4];resume_from_error: failed to get ci_or_corr
Note: To view this solution you need to Sign In .