We'd love to hear about it! Click here to go to the product suggestion community
2014:07:14-16:40:20 core ulogd: id="2105" severity="info" sys="SecureNet" sub="ips" name="UDP flood detected" action="UDP flood" fwrule="60013" initf="eth1" srcmac="[Source MAC]" dstmac="[Destination MAC]" srcip="220.127.116.11" dstip="[My WAN IP]" proto="17" length="1228" tos="0x00" prec="0x00" ttl="57" srcport="443" dstport="55971"
In reply to mork:
Great way to post an issue - you anticipated the first question and answered it already!
srcport="443" => Just clone that Service, change the name of the new one to, for example, "QUIC Responses," exchange the contents of Source and Destination and add the Service to your Exception.
Note that this new service was the one I recommended earlier in the thread. I've not seen a situation that requires an Exception for QUIC requests, but it probably doesn't hurt anything for you to leave it in place.
Cheers - Bob
In reply to BAlfson:
OMG, I was that focused on the networks and UDP stuff, that I didn't saw the obvious part of it.
Thanks, a lot for opening my eyes, Bob :)
I have found the solution for this, just add these google addresses as an exception to udpflood
In reply to Moises Campos:
Hi, Moises, and welcome to the UTM Community!
Your solution will work perfectly, but I prefer to use the UDP 443 Exception as that makes the Exception more specific.
You are Right