Thread Info
  • State Not Answered
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 11 replies
  • Subscribers 31 subscribers
  • Views 40333 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Could not associate packet to any connection

Steffen Hoock

Hi, 

i have a XG with small Firewall Rules !

 

I use NOT:

- IPS 
- or any Security Setting 

I work only Business Rules to our Servers (Port 80,443...)

 

I have every day a complete down from firewall and the Log say "Could not associate packet to any connection." 

2018-01-30 11:10:15Firewallmessageid="01001" log_type="Firewall" log_component="Invalid Traffic" log_subtype="Denied" status="Deny" con_duration="0" fw_rule_id="0" policy_type="0" user="" user_group="" web_policy_id="0" ips_policy_id="0" appfilter_policy_id="0" app_name="" app_risk="0" app_technology="" app_category="" in_interface="PortB" out_interface="" src_mac="" src_ip="xxxx" src_country="" dst_ip="xxxx" dst_country="" protocol="TCP" src_port="39228" dst_port="22" packets_sent="0" packets_received="0" bytes_sent="0" bytes_received="0" src_trans_ip="" src_trans_port="0" dst_trans_ip="" dst_trans_port="0" src_zone_type="" src_zone="" dst_zone_type="" dst_zone="" con_direction="" con_id="" virt_con_id="" hb_status="No Heartbeat" message="Could not associate packet to any connection." appresolvedby="Signature" 

 

Can any help, the sophos case support is a disaster nobody have intresst to work with my case.

 

 

thx in advance 



This thread was automatically locked due to age.
Parents
  • 0

    Hello Steffen,

    The message "Could not associate packet to any connection." means, most of the time, that the packet is for an expired connection. For example, you opened a connection to a server with SSH and you have internet fluctuation on the Client side, so the XG Firewall will not see any traffic for that connection for some time and it will consider it as expired. This is something that happens quite often in real world situation and most of the time you would not have to worry about those logs.

Reply
  • 0

    Hello Steffen,

    The message "Could not associate packet to any connection." means, most of the time, that the packet is for an expired connection. For example, you opened a connection to a server with SSH and you have internet fluctuation on the Client side, so the XG Firewall will not see any traffic for that connection for some time and it will consider it as expired. This is something that happens quite often in real world situation and most of the time you would not have to worry about those logs.

Children
No Data
Cookie Information Banner