Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 2 subscribers
  • Views 14669 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

OpenVPN and UDP Flood Protection

Heli0s
I'm having an issue with the Sophos UTM, where I have a firewall rule that allows a client behind the firewall to connect to an OpenVPN server (I allow connections to UDP port 1194). Everything works great. However, when I enable UDP Flood Protection, the OpenVPN bandwidth drops by orders of magnitude (from over 100 Mbps to less than 3). I can see in the IPS logs that that the IPS flags a "UDP flood detected" to the IP and port of the OpenVPN server. I've added an exception to the IPS to ignore the OpenVPN service (port 1194), but it still flags it.

Am I missing something in the configuration?


This thread was automatically locked due to age.
Parents
  • 0
    This exception doesn't open any ports, Martin.  You must have a firewall rule that lets "1:65535 --> 1194" traffic out.  The connection tracker will allow the return traffic.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    This exception doesn't open any ports, Martin.  You must have a firewall rule that lets "1:65535 --> 1194" traffic out.  The connection tracker will allow the return traffic.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Cookie Information Banner