hi i have trouble with a lot of FIN_WAIT_2:FIN_WAIT_2 in my state table just for https connections.
my system are a HA bridged 3.8 firewall some server in the DMZ the http/https server are an hpux system with apache 2.0.55 and ssl my rules are pass quick on $wan_if proto tcp from any to <http_server> port 80 keep state pass quick on $wan_if proto tcp from any to <https_server> port 443 keep state http and anything else works fine . for https i have a lot of FIN_WAIT_2:FIN_WAIT_2 in my state table and a growing httpsd proccesses on the server ( also in FIN_WAIT state ) maybe is that happend with keepalive and ssl on the server ? holger .
