Hi All,
i am currently experiencing random traffic drops on my sophos XG:
2019-03-12 10:01:36Firewallmessageid="00001" log_type="Firewall" log_component="Firewall Rule" log_subtype="Allowed" status="Allow" con_duration="10" fw_rule_id="48" policy_type="1" user="10.60.45.13" user_group="#IT" web_policy_id="0" ips_policy_id="0" appfilter_policy_id="0" app_name="" app_risk="0" app_technology="" app_category="" in_interface="CoreSwitch.45" out_interface="Port2" src_mac="00: 0:00: 0:00: 0" src_ip="10.60.45.13" src_country="R1" dst_ip="10.70.10.4" dst_country="R1" protocol="TCP" src_port="65355" dst_port="1433" packets_sent="9" packets_received="8" bytes_sent="2327" bytes_received="1471" src_trans_ip="" src_trans_port="0" dst_trans_ip="" dst_trans_port="0" src_zone_type="LAN" src_zone="LAN" dst_zone_type="VPN" dst_zone="VPN" con_direction="" con_event="Stop" con_id="2616188928" virt_con_id="" hb_status="No Heartbeat" message="" appresolvedby="Signature" app_is_cloud="0" Copy to clipboard
2019-03-12 10:01:36Firewallmessageid="01001" log_type="Firewall" log_component="Invalid Traffic" log_subtype="Denied" status="Deny" con_duration="0" fw_rule_id="0" policy_type="0" user="" user_group="" web_policy_id="0" ips_policy_id="0" appfilter_policy_id="0" app_name="" app_risk="0" app_technology="" app_category="" in_interface="" out_interface="" src_mac="" src_ip="10.60.45.13" src_country="" dst_ip="10.70.10.4" dst_country="" protocol="TCP" src_port="65342" dst_port="1433" packets_sent="0" packets_received="0" bytes_sent="0" bytes_received="0" src_trans_ip="" src_trans_port="0" dst_trans_ip="" dst_trans_port="0" src_zone_type="" src_zone="" dst_zone_type="" dst_zone="" con_direction="" con_id="" virt_con_id="" hb_status="No Heartbeat" message="Could not associate packet to any connection." appresolvedby="Signature" app_is_cloud="0" Copy to clipboard
The allow and drop are within a second of each other and i am now completly at a loss as to why, any advise would be appreciated.
Cheers,
This thread was automatically locked due to age.
