Menu
▾
▴
#17 Bad cache check for internal Network rules.
For internal communication (on the same host), we get:
Error - Permission denied from dsi_check_ip_options !
< dsi_check_ip_options(): sccid=10 ssnid=1 (tscid=0)
tsnid=1, class=3, perm=1
though we do have the rule (PrintPolicy):
10 1 10 1 3 0x1
Bad wildcard check ? I thought this problem had been
solved some time ago. Has it been re-introduced by
error for internal messages ?
Axelle.
PS. Scenario to check this. Use the UDP client &
server. Assign them ScID=10 and then use the following DSP:
<class_SOCKET_INIT_rule>
<protocol>UDP</protocol>
<port>9000</port>
<SnID>1</SnID>
<ScID>10</ScID>
</class_SOCKET_INIT_rule>
<class_SOCKET_rule>
<sScID>10</sScID>
<sSnID>1</sSnID>
<tScID>10</tScID>
<tSnID>1</tSnID>
<allow>CONNECT CREATE SEND RECEIVE</allow>
</class_SOCKET_rule>
<class_TRANSITION_rule>
<parent_ScID> 2 </parent_ScID>
<SnID>1</SnID>
<binary_ScID>10</binary_ScID>
<new_ScID>10</new_ScID>
</class_TRANSITION_rule>
<class_NETWORK_rule>
<sScID>10</sScID>
<sSnID>1</sSnID>
<tScID>10</tScID>
<tSnID>1</tSnID>
<allow>NETWORK_RECEIVE</allow>
</class_NETWORK_rule>
