Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 3 subscribers
  • Views 1949 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Ports being blocked after DNAT (PLEX/VPN)

Nigel Tatschner

Hey all, 

 

In an attempt to give you an overview of my environment here is the basic set-up:

 

  1. 1x Sky Hub (All Services off(DHCP etc), Configured DMZ to WAN Interface)
  2. 1x Virtual Host (Proxmox)
  3. 1x Sophos UTM 9 VM
    1. 2 x Nic
      1. 1x internal on 192.168.0.0/24 - IP 192.168.0.1
      2. 1x External (WAN) on 192.168.1.0/24 - IP 192.168.1.165
    2. DHCP/DNS Forward configured
  4. 1x Docker Host - IP 192.168.0.252 - Docker Network 172.18.0/24
    1. 1x Traefik Proxy - on 80/443 - All Docker Service behind this - except plex
    2. 1x Plex Container - TCP 32400
    3. 1x Transmission over VPN - UDP 1282

 

NAT Rules:

Firewall:

Manually Configured:

Auto Configured:

 

Attached is the firewall log.

 

One of the issue i'm having is that "Remote Connection" dose work, after enabling it the status goes green for a few seconds then goes back red.

The other issue is the VPN port is being blocked too. 

 

In addition to this i have a couple of questions,

 

  1. How do you allow all traffic internally ?
  2. Whats the best way to deal with issues resolving an domain name that points to my external (Sky Hub) IP? (I've used additional host FQDNs for now which works)

 

Thank you for your time and please let me know if there is anything else i can provide. 

Fullscreen 5811.packetfilter.log Download 
2019:12:31-10:44:38 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55047" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:38 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55105" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:38 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55106" dstport="16067" tcpflags="SYN" 
2019:12:31-10:44:38 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.236" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55107" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:38 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.248" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55108" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:38 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55101" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:39 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55055" dstport="16067" tcpflags="SYN" 
2019:12:31-10:44:39 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.236" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55056" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:39 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.248" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55057" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:39 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55105" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:40 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55106" dstport="16067" tcpflags="SYN" 
2019:12:31-10:44:40 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.236" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55107" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:40 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.248" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55108" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:41 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="178.79.142.46" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55095" dstport="8443" tcpflags="SYN" 
2019:12:31-10:44:43 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="38:8b:59:3d:2a:79" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.102" dstip="8.8.8.8" proto="17" length="60" tos="0x00" prec="0x00" ttl="63" srcport="33095" dstport="53" 
2019:12:31-10:44:43 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55101" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:44 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55105" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:44 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55106" dstport="16067" tcpflags="SYN" 
2019:12:31-10:44:44 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.236" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55107" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:44 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.248" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55108" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:44 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55081" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:44 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="81.2.160.25" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55082" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:44 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55083" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:47 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55137" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:47 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="81.2.160.25" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55138" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:47 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55139" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:47 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="178.79.142.46" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55140" dstport="8443" tcpflags="SYN" 
2019:12:31-10:44:48 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55137" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:48 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="81.2.160.25" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55138" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:48 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55139" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:48 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="178.79.142.46" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55140" dstport="8443" tcpflags="SYN" 
2019:12:31-10:44:48 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="ce:5b:5b:45:97:6c" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.252" dstip="1.1.1.1" proto="17" length="63" tos="0x00" prec="0x00" ttl="62" srcport="35430" dstport="53" 
2019:12:31-10:44:48 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="ce:5b:5b:45:97:6c" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.252" dstip="1.1.1.1" proto="17" length="63" tos="0x00" prec="0x00" ttl="62" srcport="55004" dstport="53" 
2019:12:31-10:44:48 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="ce:5b:5b:45:97:6c" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.252" dstip="67.215.7.186" proto="17" length="42" tos="0x00" prec="0x00" ttl="62" srcport="45311" dstport="1282" 
2019:12:31-10:44:49 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="178.79.142.46" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55095" dstport="8443" tcpflags="SYN" 
2019:12:31-10:44:49 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55137" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:49 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="81.2.160.25" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55138" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:49 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55139" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:49 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="178.79.142.46" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55140" dstport="8443" tcpflags="SYN" 
2019:12:31-10:44:51 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="ce:5b:5b:45:97:6c" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.252" dstip="67.215.7.186" proto="17" length="42" tos="0x00" prec="0x00" ttl="62" srcport="45311" dstport="1282" 
2019:12:31-10:44:51 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55101" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:52 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55105" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:52 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55106" dstport="16067" tcpflags="SYN" 
2019:12:31-10:44:52 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.236" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55107" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:52 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.248" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55108" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:52 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="3c:8d:20:f2:de:24" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.121" dstip="8.8.8.8" proto="17" length="65" tos="0x00" prec="0x00" ttl="63" srcport="33289" dstport="53" 
2019:12:31-10:44:53 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="ce:5b:5b:45:97:6c" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.252" dstip="REMOVED" proto="6" length="60" tos="0x00" prec="0x00" ttl="62" srcport="49688" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:53 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55137" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:53 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="81.2.160.25" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55138" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:53 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55139" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:53 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="178.79.142.46" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55140" dstport="8443" tcpflags="SYN" 
2019:12:31-10:44:54 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="ce:5b:5b:45:97:6c" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.252" dstip="REMOVED" proto="6" length="60" tos="0x00" prec="0x00" ttl="62" srcport="49688" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:54 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="ce:5b:5b:45:97:6c" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.252" dstip="67.215.7.186" proto="17" length="42" tos="0x00" prec="0x00" ttl="62" srcport="45311" dstport="1282" 
2019:12:31-10:44:54 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55161" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:54 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.236" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55162" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:54 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.248" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55163" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:54 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="8.8.8.8" proto="17" length="80" tos="0x00" prec="0x00" ttl="127" srcport="50218" dstport="53" 
2019:12:31-10:44:54 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="8.8.8.8" proto="17" length="80" tos="0x00" prec="0x00" ttl="127" srcport="54965" dstport="53" 
2019:12:31-10:44:54 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55164" dstport="16067" tcpflags="SYN" 
2019:12:31-10:44:54 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55165" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:56 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55161" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:56 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.236" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55162" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:56 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.248" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55163" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:56 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55164" dstport="16067" tcpflags="SYN" 
2019:12:31-10:44:56 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55165" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:56 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="ec:b5:fa:03:c8:19" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.100" dstip="216.239.35.8" proto="17" length="76" tos="0x10" prec="0x00" ttl="63" srcport="60904" dstport="123" 
2019:12:31-10:44:56 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="ec:b5:fa:03:c8:19" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.100" dstip="216.239.35.4" proto="17" length="76" tos="0x10" prec="0x00" ttl="63" srcport="48569" dstport="123" 
2019:12:31-10:44:56 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="ec:b5:fa:03:c8:19" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.100" dstip="216.239.35.0" proto="17" length="76" tos="0x10" prec="0x00" ttl="63" srcport="51215" dstport="123" 
2019:12:31-10:44:57 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55170" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:57 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="8.8.8.8" proto="17" length="71" tos="0x00" prec="0x00" ttl="127" srcport="60413" dstport="53" 
2019:12:31-10:44:57 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="8.8.8.8" proto="17" length="71" tos="0x00" prec="0x00" ttl="127" srcport="57114" dstport="53" 
2019:12:31-10:44:57 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="ec:b5:fa:03:c8:19" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.100" dstip="216.239.35.12" proto="17" length="76" tos="0x10" prec="0x00" ttl="63" srcport="57957" dstport="123" 
2019:12:31-10:44:57 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55161" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:57 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.236" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55162" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:58 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55170" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:58 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.248" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55163" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:58 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="81.2.160.25" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55175" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:58 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55176" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:58 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55164" dstport="16067" tcpflags="SYN" 
2019:12:31-10:44:58 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55165" dstport="15153" tcpflags="SYN" 
2019:12:31-10:44:58 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="8.8.8.8" proto="17" length="76" tos="0x00" prec="0x00" ttl="127" srcport="55333" dstport="53" 
2019:12:31-10:44:58 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="8.8.8.8" proto="17" length="76" tos="0x00" prec="0x00" ttl="127" srcport="56240" dstport="53" 
2019:12:31-10:44:58 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="8.8.8.8" proto="17" length="77" tos="0x00" prec="0x00" ttl="127" srcport="59539" dstport="53" 
2019:12:31-10:44:58 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="8.8.8.8" proto="17" length="77" tos="0x00" prec="0x00" ttl="127" srcport="57495" dstport="53" 
2019:12:31-10:44:59 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="81.2.160.25" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55175" dstport="12848" tcpflags="SYN" 
2019:12:31-10:44:59 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55176" dstport="32400" tcpflags="SYN" 
2019:12:31-10:44:59 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55170" dstport="12848" tcpflags="SYN" 
2019:12:31-10:45:01 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="81.2.160.25" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55175" dstport="12848" tcpflags="SYN" 
2019:12:31-10:45:01 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55176" dstport="32400" tcpflags="SYN" 
2019:12:31-10:45:01 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55137" dstport="12848" tcpflags="SYN" 
2019:12:31-10:45:01 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="81.2.160.25" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55138" dstport="12848" tcpflags="SYN" 
2019:12:31-10:45:01 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55139" dstport="32400" tcpflags="SYN" 
2019:12:31-10:45:01 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55161" dstport="15153" tcpflags="SYN" 
2019:12:31-10:45:01 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="178.79.142.46" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55140" dstport="8443" tcpflags="SYN" 
2019:12:31-10:45:01 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.236" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55162" dstport="32400" tcpflags="SYN" 
2019:12:31-10:45:01 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.248" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55163" dstport="32400" tcpflags="SYN" 
2019:12:31-10:45:02 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55164" dstport="16067" tcpflags="SYN" 
2019:12:31-10:45:02 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55165" dstport="15153" tcpflags="SYN" 
2019:12:31-10:45:02 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="ce:5b:5b:45:97:6c" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.252" dstip="67.215.7.186" proto="17" length="42" tos="0x00" prec="0x00" ttl="62" srcport="45311" dstport="1282" 
2019:12:31-10:45:03 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="30:fd:38:a2:e8:23" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.101" dstip="8.8.8.8" proto="17" length="65" tos="0x00" prec="0x00" ttl="63" srcport="52739" dstport="53" 
2019:12:31-10:45:03 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55170" dstport="12848" tcpflags="SYN" 
2019:12:31-10:45:05 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="8.8.8.8" proto="17" length="77" tos="0x00" prec="0x00" ttl="127" srcport="62768" dstport="53" 
2019:12:31-10:45:05 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="8.8.8.8" proto="17" length="77" tos="0x00" prec="0x00" ttl="127" srcport="53675" dstport="53" 
2019:12:31-10:45:05 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="81.2.160.25" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55175" dstport="12848" tcpflags="SYN" 
2019:12:31-10:45:05 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55176" dstport="32400" tcpflags="SYN" 
2019:12:31-10:45:07 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="00:f6:20:73:94:42" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.118" dstip="8.8.8.8" proto="17" length="65" tos="0x00" prec="0x00" ttl="63" srcport="39714" dstport="53" 
2019:12:31-10:45:07 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="00:f6:20:73:94:42" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.118" dstip="8.8.8.8" proto="17" length="65" tos="0x00" prec="0x00" ttl="63" srcport="57965" dstport="53" 
2019:12:31-10:45:09 thegrid ulogd[4753]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="10" initf="eth0" outitf="eth1" srcmac="3c:8d:20:f2:de:24" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.121" dstip="8.8.8.8" proto="17" length="60" tos="0x00" prec="0x00" ttl="63" srcport="56708" dstport="53" 
2019:12:31-10:45:10 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55161" dstport="15153" tcpflags="SYN" 
2019:12:31-10:45:10 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.236" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55162" dstport="32400" tcpflags="SYN" 
2019:12:31-10:45:10 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.248" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55163" dstport="32400" tcpflags="SYN" 
2019:12:31-10:45:10 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="82.129.122.107" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55164" dstport="16067" tcpflags="SYN" 
2019:12:31-10:45:10 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55165" dstport="15153" tcpflags="SYN" 
2019:12:31-10:45:12 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="52.232.24.230" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55170" dstport="12848" tcpflags="SYN" 
2019:12:31-10:45:13 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="81.2.160.25" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55175" dstport="12848" tcpflags="SYN" 
2019:12:31-10:45:13 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth3" srcmac="18:31:bf:b7:f8:70" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.169" dstip="192.168.1.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="127" srcport="55176" dstport="32400" tcpflags="SYN" 
2019:12:31-10:45:18 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="a0:56:f3:1e:f8:7b" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.125" dstip="17.57.146.84" proto="6" length="64" tos="0x00" prec="0x00" ttl="63" srcport="49285" dstport="5223" tcpflags="SYN" 
2019:12:31-10:45:18 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="a0:56:f3:1e:f8:7b" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.125" dstip="17.57.146.6" proto="6" length="64" tos="0x00" prec="0x00" ttl="63" srcport="49286" dstport="5223" tcpflags="SYN" 
2019:12:31-10:45:18 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="a0:56:f3:1e:f8:7b" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.125" dstip="17.57.146.5" proto="6" length="64" tos="0x00" prec="0x00" ttl="63" srcport="49287" dstport="5223" tcpflags="SYN" 
2019:12:31-10:45:18 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="a0:56:f3:1e:f8:7b" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.125" dstip="17.57.146.5" proto="6" length="64" tos="0x00" prec="0x00" ttl="63" srcport="49287" dstport="5223" tcpflags="SYN" 
2019:12:31-10:45:18 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="a0:56:f3:1e:f8:7b" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.125" dstip="17.57.146.5" proto="6" length="64" tos="0x00" prec="0x00" ttl="63" srcport="49287" dstport="5223" tcpflags="SYN" 
2019:12:31-10:45:18 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="a0:56:f3:1e:f8:7b" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.125" dstip="17.57.146.5" proto="6" length="64" tos="0x00" prec="0x00" ttl="63" srcport="49287" dstport="5223" tcpflags="SYN" 
2019:12:31-10:45:18 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="a0:56:f3:1e:f8:7b" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.125" dstip="17.57.146.5" proto="6" length="64" tos="0x00" prec="0x00" ttl="63" srcport="49287" dstport="5223" tcpflags="SYN" 
2019:12:31-10:45:18 thegrid ulogd[4753]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="a0:56:f3:1e:f8:7b" dstmac="d2:81:41:fb:84:ef" srcip="192.168.0.125" dstip="17.57.146.5" proto="6" length="64" tos="0x00" prec="0x00" ttl="63" srcport="49287" dstport="5223" tcpflags="SYN"



This thread was automatically locked due to age.
  • +1

    Hi  

    Thanks for the details. That does make it easy to understand the setup and try to answer any questions.

    Regarding your first question; How do you allow all traffic internally?

    > Apart from the Firewall rule no. 8 you have configured for Internal network to Internal network, you will also need to make sure that Web traffic is not being blocked by UTM. In order to achieve this, you can either create a tag for Internal network in WebFiltering or add the Internal network in  Skip Transparent Mode Destination Hosts/Network under Web Protection > Filtering Options > Misc. This way, it will not filter the Web Traffic going to the Internal network.

    Your second question;What's the best way to deal with issues resolving a domain name that points to my external (Sky Hub) IP? (I've used additional host FQDNs for now which works)

    > You can create a DNS Request route to point to any specific DNS server from where the specific Host will be resolved. You can find it in Sophos UTM: Best practices for DNS Configuration. The other option is to create a DNS host which you've already implemented.

    I've checked the packetfilter.log and all the dropped packets had fwrule="60002" which means it was a default drop. 

    Logmark Table

    Logmark Value Iptables Chain Description Target
     60001 filter:INPUT Input Default Drop LOGDROP
     60002 filter:FORWARD   Forward Default Drop LOGDROP
     60003 filter:OUTPUT Output Default Drop LOGDROP 
     60004 filter:AUTO_INPUT   Forbidden SSH connects LOGDROP 
     60005 filter:AUTO_INPUT Forbidden WebAdmin connects  LOGDROP
    60006 filter:AUTO_INPUT Allowed WebAdmin connects (if logging enabled) LOGACCEPT
    60007 filter:INVALID_PKT Drop invalid packets LOGDROP
    60008 filter:SPOOF_DROP Drop spoofed packets LOGDROP
    60009 filter:STRICT_TCP_STATE Drop packets with suspicious tcp state LOGDROP
    60010 mangle:PREROUTING Log FTP data connections LOG


    You can read the KBA: Packetfilter logfiles on the Sophos UTM for more information on packetfilter logs.

    Regards

    Jaydeep

  • 0 in reply to Jaydeep

    Jaydeep, thank you so much for taking the time to respond and the very detailed reply,  I really appreciate it. 

     

    With the information you taught me I was able to fix some of my issue, I am how ever still getting issues with plex, it seems to be working for some scenarios but not others, I'm still getting the same drop even with the proper rule.

     

    Is there anything else I could try?

  • 0 in reply to Nigel Tatschner

    Attached it's my firewall log and here are my new rule set:

    For the parts that work I'm getting major buffering issues, not sure with that at all

    1778.packetfilter.log

  • 0 in reply to Nigel Tatschner

    Hi  

    Have you checked this article from https://support.plex.tv/articles/201543147-what-network-ports-do-i-need-to-allow-through-my-firewall/ ? Try to configure the Firewall rules for the ports mentioned in the article.

    Regards

    Jaydeep

  • 0 in reply to Jaydeep

    Jaydeep said:

    Hi  

    Have you checked this article from https://support.plex.tv/articles/201543147-what-network-ports-do-i-need-to-allow-through-my-firewall/ ? Try to configure the Firewall rules for the ports mentioned in the article.

     

    Hi Jaydeep, 

     

    Thanks for the reply, 

     

    I have indeed seem all the ports used by plex and tried forwarding them, however only one 32400 is used in remote access, the weird thing is that it's actually working for the most part but the option for remote access in plex with a manually specified port (of 32400) once activated goes green for a few seconds then goes red and port 32400 is listed in the firewall log as default dropped even though i have that port expressively allowed:

     

     

    Any ideas?

    8787.packetfilter.log

  • +1 in reply to Nigel Tatschner

    Jaydeep... you absolute legend.

     

    FINALLY figured it out, turns out the port i specified source was also set to 32400... you need to set the detination to 32400 and the source to 1:65535 for it to work!!!

     

    Thank you getting me to the correct answer!!!

     

    You are amazing!

Unfiltered HTML