Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Subscribers 4 subscribers
  • Views 1689 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM9 dropping HTTP traffic with error 60001

JoshSelatan

Hey there,

 

At present I've got an issue with HTTP traffic being dropped by the firewall with 60001..

Model: SG430

Firmware version: 9.508-10

 

I've been through the forums and most of the issues that come up seem to refer back to a NAT config.. which we're not currently using..

This issue appeared to arise yesterday, and as far as I'm aware no changes were made.. 

There is an explicit rule in the firewall to allow Any traffic between these subnets..

This is the live log showing other ports getting through..

 

 

Here's the log as an example of the drops,

 

/var/log/packetfilter.log:2020:03:26-18:48:05 109ut320 ulogd[25136]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="3000000001" initf="eth1" outitf="eth3" srcmac="e4:8d:8c:1e:93:a8" dstmac="00:1a:8c:6c:32:44" srcip="10.100.97.2" dstip="10.97.0.19" proto="6" length="50" tos="0x00" prec="0x00" ttl="126" srcport="57760" dstport="20000" tcpflags="ACK PSH"

/var/log/packetfilter.log:2020:03:26-18:48:19 109ut320 ulogd[25136]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth1" srcmac="e4:8d:8c:1e:93:a8" dstmac="00:1a:8c:6c:32:44" srcip="10.100.97.2" dstip="10.97.0.1" proto="6" length="52" tos="0x02" prec="0x00" ttl="127" srcport="52596" dstport="80" tcpflags="SYN"

/var/log/packetfilter.log:2020:03:26-18:48:22 109ut320 ulogd[25136]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth1" srcmac="e4:8d:8c:1e:93:a8" dstmac="00:1a:8c:6c:32:44" srcip="10.100.97.2" dstip="10.97.0.1" proto="6" length="52" tos="0x02" prec="0x00" ttl="127" srcport="52596" dstport="80" tcpflags="SYN"

/var/log/packetfilter.log:2020:03:26-18:48:28 109ut320 ulogd[25136]: id="2002" severity="info" sys="SecureNet" sub="packetfilter" name="Packet accepted" action="accept" fwrule="3000000001" initf="eth1" outitf="eth3" srcmac="e4:8d:8c:1e:93:a8" dstmac="00:1a:8c:6c:32:44" srcip="10.100.97.12" dstip="10.97.0.18" proto="1" length="48" tos="0x00" prec="0x00" ttl="62" type="8" code="0"

/var/log/packetfilter.log:2020:03:26-18:48:29 109ut320 ulogd[25136]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth1" srcmac="e4:8d:8c:1e:93:a8" dstmac="00:1a:8c:6c:32:44" srcip="10.100.97.2" dstip="10.97.0.1" proto="6" length="48" tos="0x00" prec="0x00" ttl="127" srcport="52596" dstport="80" tcpflags="SYN"

 

 

Any help would be greatly appreciated. 

 

thanks

 



This thread was automatically locked due to age.
Unfiltered HTML