Hello,
Setting up the passive setup between two cells on seperate sides of a firewall and the destination cell is rejecting the event. On e the destination in the Details tab we get the following data
Cell Disallowed Connect ----- Reason not allowed
Cell Client
Cleint Location ----- xxx.xxx.xxx.xxx/2038
Client Name ---- msend
Client Type ---- adapter
On the sending side we are using the gateway.eif with the following info
protocol=EIF
cond.new=propagate
cond.mod=always
slots.new=[$ALL]
slots.mod=[$MODS]
init.new=$CLASS;\n
init.mod=modify $GHANDLE;\n
body=\t$NAME=$VALUE;\n
term=END\n
openquote='
closequote='
escapequote='
the sending client has the info in the mcell.dir and using the send_to in a rule for the cell just to get started. The mcell.dir is below for the gateway
gateway.eif [cell_name_destination] 0 [name of firewall]:1830
On the destination side we also have the
mc_evtdata_internal.baroc
MC_DATA_CLASS:
MC_CELL_HEARTBEAT ISA MC_CELL_DATA
.....
END
MC_DATA_CLASS :
MC_CELL_PASSIVE_CLEINT ISA MC_CELL_HEARTBEAT;
END
MC_CELL_PASSIVE_CLIENT;
cell = OutsideFW; # Source/destination cell name
enable = 1; # 0 = disabled / 1 = enabled
interval = 10 m; # Interval between heartbeats (s)
missed_warning = 1; # Number of misses for WARNING event
missed_minor = 2; # Number of misses for MINOR event
missed_critical = 3; # Number of misses for CRITICAL event
END
The firewall recieve the packet and moves it through and resends it to the destinataion, so we have eliminated it as the issue. Also, using a packet capture tool on the destination we see the packet come in. We are getting ready to change direction and use the tcpserver adapter to get the packet since we can capture the packet on the destination but this should work. We have even moved away from the firewall to two servers sitting side by side and get the same error.
