FIX: The final ACK packet during an orderly closure of a SecureNAT client TCP connection may be dropped in a Forefront Threat Management Gateway 2010 environment

View products that this article applies to.

Symptoms

During the orderly closure of a SecureNAT client TCP connection in a Microsoft Forefront Threat Management Gateway (TMG) 2010 environment, TMG may drop the final acknowledgement (FIN ACK) of the connection closure handshake.

This could lead to re-transmissions of the final FIN ACK packet, and these re-transmissions can lead to application delays, depending on the behavior of the application.

↑ Back to the top

Cause

This issue occurs because of a handling bug in the Firewall Engine driver for TMG.

↑ Back to the top

Resolution

To resolve this issue, install the software update that is described in the following Microsoft Knowledge Base article:

2517957 Software Update 1 Rollup 4 for Forefront Threat Management Gateway (TMG) 2010 Service Pack 1

↑ Back to the top

Status

Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.

↑ Back to the top

References

For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:

824684 Description of the standard terminology that is used to describe Microsoft software updates

↑ Back to the top

Applies to:

↑ Back to the top

Keywords: kbexpertiseinter, kbbug, kbsurveynew, kbqfe, kbfix, kb

↑ Back to the top

Article Info

Article ID	:	2518676
Revision	:	1
Created on	:	1/7/2017
Published on	:	6/21/2014
Exists online	:	False
Views	:	272

Microsoft KB Archive Search

FIX: The final ACK packet during an orderly closure of a SecureNAT client TCP connection may be dropped in a Forefront Threat Management Gateway 2010 environment

Symptoms

Cause

Resolution

Status

References

Applies to: