Hello there, I have all incoming traffic from http,https,dns and imap services redirectioned via NAT to our linux server. We have country block truned on for almost every country, but using country block exceptions for these services. If i open up the firewall log we get this: 16:50:33 NAT rule #3 TCP 69.191.211.202 : 35046 → 62.48.251.26 : 80 [SYN] len=60 ttl=54 tos=0x00 srcmac=40:00:00:00:00:02 dstmac=00:1a:8c:4b:28:e9 16:50:33 Country blocked TCP 69.191.211.202 : 35046 → 192.168.1.97 : 80 [SYN] len=60 ttl=53 tos=0x00 srcmac=40:00:00:00:00:02 dstmac=00:1a:8c:4b:28:e9 Why does the firewall blocks the package from source to the linux server? source=69.191.211.202 UTM9=62.48.251.26 linux=192.168.1.97 Thanks

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

When using NAT to redirection services, country blocking blocks traffic going to the final destination, even if exceptions are turned on for all countries

Hello there,

I have all incoming traffic from http,https,dns and imap services redirectioned via NAT to our linux server.

We have country block truned on for almost every country, but using country block exceptions for these services.

If i open up the firewall log we get this:

16:50:33

NAT rule #3

TCP

69.191.211.202

35046

→

62.48.251.26

[SYN]

len=60

ttl=54

tos=0x00

srcmac=40:00:00:00:00:02

dstmac=00:1a:8c:4b:28:e9

16:50:33

Country blocked

TCP

69.191.211.202

35046

→

192.168.1.97

[SYN]

len=60

ttl=53

tos=0x00

srcmac=40:00:00:00:00:02

dstmac=00:1a:8c:4b:28:e9

Why does the firewall blocks the package from source to the linux server?

source=69.191.211.202

UTM9=62.48.251.26

linux=192.168.1.97

Thanks

This thread was automatically locked due to age.

Parents

Reply

Children

No Data