Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 2 subscribers
  • Views 6961 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Can't get firewall to stop dropping packets

ibell63
I've found that even if I put in a rule that says to allow anything, the firewall service still drops lots of packets according to the live log and actual log file.  Here's the rule I put in to try to disable the firewall.

Source --> Service --> Destination

Any -----> Any -----> Any

Please don't reply and tell me not to put this rule in.  I understand it will make the firewall allow anything.  That isn't the point.  The point is that there appears to be an issue with rule processing.

Firmware version is 9.201-23

This is really frustrating.  I've tried a bunch of different rules and I can't seem to find anything that makes the firewall lax enough to not drop tons of Netflix packets.

Am I missing something?


This thread was automatically locked due to age.
Parents
  • 0
    Any word on this? I'm having the same problem. 
    BAlfson, I read over your rulz, and I think I have them right. I don't understand the first part of #3 though.

    Here's a line from my log: 2014:05:08-09:14:14 DellUTM ulogd[25453]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth0" srcmac="0:90:7f:94:97:5d" dstmac="0:4:5a:85:33:b" srcip="x.x.x.x" dstip="y.y.y.y" proto="6" length="48" tos="0x00" prec="0x00" ttl="127" srcport="56869" dstport="443" tcpflags="SYN"

    Update: I just realized the DNATs are disabled by default. I think turning them on might have fixed it. [:)]
Reply
  • 0
    Any word on this? I'm having the same problem. 
    BAlfson, I read over your rulz, and I think I have them right. I don't understand the first part of #3 though.

    Here's a line from my log: 2014:05:08-09:14:14 DellUTM ulogd[25453]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth0" srcmac="0:90:7f:94:97:5d" dstmac="0:4:5a:85:33:b" srcip="x.x.x.x" dstip="y.y.y.y" proto="6" length="48" tos="0x00" prec="0x00" ttl="127" srcport="56869" dstport="443" tcpflags="SYN"

    Update: I just realized the DNATs are disabled by default. I think turning them on might have fixed it. [:)]
Children
No Data
Cookie Information Banner