Palo Alto Networks Knowledgebase: When Does Palo Alto Networks Firewall Send a TCP Reset (RST) to Terminate a Session?

When Does Palo Alto Networks Firewall Send a TCP Reset (RST) to Terminate a Session?

38581
Created On 02/07/19 23:56 PM - Last Updated 02/07/19 23:57 PM
Resolution

A TCP reset is an immediate close of a TCP connection. This allows for the resources that were allocated for the previous connection to be released and made available to the system. The receiver of a RST segment should also consider the possibility that the application protocol client at the other end was abruptly terminated and did not have a chance to process the data that was sent to it.

The Palo Alto Networks firewall sends a TCP Reset (RST) only when a threat is detected in the traffic flow. On all other cases the RST will not be sent by the firewall.

owner: aprasanna



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClUvCAK&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language