Hey there,
At present I've got an issue with HTTP traffic being dropped by the firewall with 60001..
Model: SG430
Firmware version: 9.508-10
I've been through the forums and most of the issues that come up seem to refer back to a NAT config.. which we're not currently using..
This issue appeared to arise yesterday, and as far as I'm aware no changes were made..
There is an explicit rule in the firewall to allow Any traffic between these subnets..
This is the live log showing other ports getting through..
Here's the log as an example of the drops,
/var/log/packetfilter.log:2020:03:26-18:48:05 109ut320 ulogd[25136]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="3000000001" initf="eth1" outitf="eth3" srcmac="e4:8d:8c:1e:93:a8" dstmac="00:1a:8c:6c:32:44" srcip="10.100.97.2" dstip="10.97.0.19" proto="6" length="50" tos="0x00" prec="0x00" ttl="126" srcport="57760" dstport="20000" tcpflags="ACK PSH"
/var/log/packetfilter.log:2020:03:26-18:48:19 109ut320 ulogd[25136]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth1" srcmac="e4:8d:8c:1e:93:a8" dstmac="00:1a:8c:6c:32:44" srcip="10.100.97.2" dstip="10.97.0.1" proto="6" length="52" tos="0x02" prec="0x00" ttl="127" srcport="52596" dstport="80" tcpflags="SYN"
/var/log/packetfilter.log:2020:03:26-18:48:22 109ut320 ulogd[25136]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth1" srcmac="e4:8d:8c:1e:93:a8" dstmac="00:1a:8c:6c:32:44" srcip="10.100.97.2" dstip="10.97.0.1" proto="6" length="52" tos="0x02" prec="0x00" ttl="127" srcport="52596" dstport="80" tcpflags="SYN"
/var/log/packetfilter.log:2020:03:26-18:48:28 109ut320 ulogd[25136]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="3000000001" initf="eth1" outitf="eth3" srcmac="e4:8d:8c:1e:93:a8" dstmac="00:1a:8c:6c:32:44" srcip="10.100.97.12" dstip="10.97.0.18" proto="1" length="48" tos="0x00" prec="0x00" ttl="62" type="8" code="0"
/var/log/packetfilter.log:2020:03:26-18:48:29 109ut320 ulogd[25136]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth1" srcmac="e4:8d:8c:1e:93:a8" dstmac="00:1a:8c:6c:32:44" srcip="10.100.97.2" dstip="10.97.0.1" proto="6" length="48" tos="0x00" prec="0x00" ttl="127" srcport="52596" dstport="80" tcpflags="SYN"
Any help would be greatly appreciated.
thanks
This thread was automatically locked due to age.