hi samc,
thank you very much for your reply ..
as you suggested, i ran the "get session commands" and found
the following:
: SSG140-> get session src-ip X.X.X.X dst-ip Y.Y.Y.Y
: alloc 1180/max 48064, alloc failed 0, mcast alloc 0, di alloc failed 0
: total reserved 0, free sessions in shared pool 46884
: Total 1 sessions according filtering criteria.
: id 30648/s**,vsys 0,flag 08000040/0100/0001,policy 18,time 105, dip 0 module 0
: if 5(nspflag 801e01):X.X.X.X/57048->Y.Y.Y.Y/1521,6,02082008ed1c,sess token 13,vlan 0,tun 0,vsd 0,route 3,wsf 0
: if 0(nspflag 801e00):X.X.X.X/57048<-Y.Y.Y.Y/1521,6,02082044783d,sess token 3,vlan 0,tun 0,vsd 0,route 1,wsf 0
: Total 1 sessions shown
:
: SSG140-> get session id 30648
: id 30648(000077b8), flag 08000040/0100/0001/0000, vsys id 0(Root)
: policy id 18, application id 64, dip id 0, state 0
: current timeout 860, max timeout 1800 (second)
: status normal, start time 17297383, duration 0
: session id mask 0, app value 0
: ethernet0/1(vsd 0): X.X.X.X/57048->Y.Y.Y.Y/1521, protocol 6 session token 13 route 3
: gtwy Y.Y.Y.Y, mac 02082008ed1c, nsptn info 0, pmtu 1500
: flag 801e01, diff 0/0
: port seq 0, subif 0, cookie 0, fin seq 0, fin state 0
: ethernet0/0(vsd 0): X.X.X.X/57048<-Y.Y.Y.Y/1521, protocol 6 session token 3 route 1
: gtwy X.X.X.X, mac 02082044783d, nsptn info 0, pmtu 1500
: mac 02082044783d, nsptn info 0
: flag 801e00, diff 0/0
: port seq 0, subif 0, cookie 0, fin seq 0, fin state 0
: SSG140->
so it appears that ALG is triggered ?
how do i proceed to better understand (and fix) the problem ?
thank you very much again!
sam