« on: January 23, 2011, 03:47:20 pm »
When in doubt where the problems lays there are two things you can do:
Enable logging at the begining of a session on the inbounf policy. Then look at the the close reason for a session. That should make clear hether or not the session was allowed by the firewall. If it show age-out, rst or something like that, it was allowed but closed afterwards.
If this don't help use the real pwer tool: debug:
set a flow filter:
set ff dst-ip <outside address> dst-port 23
start the debug:
debug flow basic
Clear the debug output buffer:
Now try the telnet session.
Stop the debugging:
undebug all (or simply press the ESC button on the keyboard)
Read the output with:
get db stream.
If it isn't clear: post the output, we're here to help you!