I'm running into two issues that I can't figure out, I've tried searching for similar issues, but I haven't found an answer yet.
My setup:
UTM 9.411-3
LAN network 192.168.2.x WAN IP 24.140.23.XXX
Every feature but the Firewall and EndPoint Protection is turned off to try and troubleshoot my issues.
My first firewall rule is FROM: Internal Network > Any service > Internet IPv4 ALLOWED
In my firewall log I see the following:
2017:02:25-10:50:52 utm ulogd[4505]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth0" srcmac="c4:85:08:a9:c1:85" dstmac="00:11:0a:14:31:51" srcip="192.168.2.99" dstip="24.140.23.XXX" proto="6" length="52" tos="0x00" prec="0x00" ttl="128" srcport="50460" dstport="6690" tcpflags="SYN"
I read the KB article about traffic matching rule 60001, but I don't understand how LAN to WAN traffic would have anything to do with NAT.
I also see LAN to LAN traffic on the same subnet drop on my network with the same rule:
2017:02:24-10:59:29 utm ulogd[4505]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth0" srcmac="00:11:32:2b:29:5d" dstmac="00:11:0a:14:31:51" srcip="192.168.2.162" dstip="192.168.2.1" proto="1" length="323" tos="0x00" prec="0xc0" ttl="64" type="3" code="3"
Any ideas?
This thread was automatically locked due to age.
