Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 4 subscribers
  • Views 21933 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Firewall Default DROP IGMP - how to allow?

pazu

Hi all,

I'm troubleshooting an issue with google Chrome Cast and I suspect my issue is with IGMP. I have two APs, setup in Access Mode and I'm seeing a lot of Default DROP IGMP entries in the FW Logs.

09:33:05 Default DROP IGMP  
10.0.0.20    
224.0.0.1    

I don't have many firewall rules, certainly for internally, but I can't see where this is being dropped and not sure how to create a rule to allow on this one?


Using UTM 9 - any help would be greatly appreciated.

 

Cheers,

Matt



This thread was automatically locked due to age.
  • 0

    Hi Matt,

    IGMP is dropped by default by the last rule in the firewall rule set. I found no option to allow IGMP in generally. But it's possible to create a firewall rule which allows IGMP:

    Source: Network or single hosts / your APs

    Service: Any

    Destination: IPv4 Multicast

     

    I'm not sure if the destination object "IPv4 Multicast" is an standard object in Sophos UTM, or if I had create it. So if you need to create this object it must look like this:

    Jas

  • 0 in reply to Jas Man

    Thanks Jas - perfect response, I had it close just didn't know the multicast definition.

     

    For the record, I did need to create the network definition, just for anyone else that has the same issue.

     

    I have implemented that rule, will see how we go.

     

    Thanks very much for the quick response.

     

    Cheers,

    Matt

Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML