Could you tell me when TCP session is timeout, does PA firewall send a TCP reset(RST) packet to endpoint server/client or just close and delete the session from own session table without sending any packets ?
if a tcp session times out (no packets received in X time) the session will simply close and no rst or fin is sent from the firewall
no, a RST can only be sent as a response to something. You'd either need to have a deny rule with the action set to reset, or a custom threat signature with action reset
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!