This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Network firewall rule ignored. Packets drop by default rule (6002)

We are getting Default Drop for some traffic that should be allowed in Sophos UTM

Firmware version: 9.605-1

These rules are configured with the same public IP. 

Only traffic for rules 177 and 178 is being blocked

Firewall log shows this message:

2023:08:03-09:44:50 utm ulogd[4916]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth0" srcmac="02:8d:f2:17:73:d0" dstmac="02:50:85:4f:07:5c" srcip="10.27.34.109" dstip="163.166.x.x" proto="6" length="52" tos="0x00" prec="0x00" ttl="116" srcport="53855" dstport="8446" tcpflags="SYN" 

Does anyone know what could be happening for this dropped packets?

Thanks



This thread was automatically locked due to age.
Parents Reply
  • Thanks Vivek, finally it's working and matching the new rule "on the top". It seems it takes some time to apply the config. I just created a new rule to add a new port but it's still not matching. I'll wait some minutes and I'll try it later.

    You were very helpful.

    Thanks,

    Regards

Children