EFW Support
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email?
Sunday 24 November 2024, 02:08:25 pm
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
Visit the official Endian Community Mailinglist
HERE
14261
Posts in
4377
Topics by
6517
Members
Latest Member:
Sandro
Search:
Advanced search
EFW Support
Support
General Support
Inter-Zone (Green) traffic Blocked By Firewall (ports 137 / 138)
0 Members and 0 Guests are viewing this topic.
« previous
next »
Pages:
[
1
]
Author
Topic: Inter-Zone (Green) traffic Blocked By Firewall (ports 137 / 138) (Read 6977 times)
superman859
Jr. Member
Offline
Posts: 1
Inter-Zone (Green) traffic Blocked By Firewall (ports 137 / 138)
«
on:
Monday 13 December 2010, 09:12:56 am »
I'm using the default inter-zone traffic settings for the firewall, which shows it allows GREEN -> GREEN ANY. However, I am logging blocked packets on the firewall, and I see this:
INPUTFW:DROP UDP (br0) 192.168.1.199:137 -> 192.168.1.255:137
It seems it is still blocking inter-zone traffic - the GREEN interface is configured on the 192.168.1.0/24 subnet.
Anyone have any ideas how to stop this? It even happens if I turn off the inter-zone firewall altogether. The only thing that looks different in the logs to me is that blocked traffic from the uplink state INPUT:DROP, whereas these inter-zone logs say INPUTFW:DROP.
I tried adding IP addresses specifically to the inter-zone firewall as well, setting it to allow FROM 192.168.7.199 to 192.168.7.255 on TCP+UDP ports 137/138, and it still shows that it drops them.
I've tried turning off services such as IPS as well, without any luck. Does anyone have any idea at all? If you look at your logs, do you see these dropped packets as well? Just running a simple 'net view /domain' on a windows box on green will force it to make the attempt, and for me it generates the dropped packets in the live firewall log every time.
The way the hardware is configured is eth0 (which automatically runs as br0) is green, and eth1 is red, if it makes a difference.
Logged
Pages:
[
1
]
« previous
next »
Jump to:
Please select a destination:
-----------------------------
Announcements
-----------------------------
=> Project News
=> Latest News and Updates
-----------------------------
Support
-----------------------------
=> General Support
=> Installation Support
=> EFW SMTP, HTTP, SIP, FTP Proxy Support
=> VPN Support
=> Hardware Support
-----------------------------
Development
-----------------------------
=> EFW Wishlist
=> Contribute Your Customisations & Modifications
Page created in 0.063 seconds with 19 queries.
Powered by SMF 1.1 RC2
|
SMF © 2001-2005, Lewis Media
Design by
7dana.com