Strange Firewall rule processing

Started by gnomee, February 15, 2023, 02:49:49 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 15, 2023, 02:49:49 PM
I am really baffled by this. I have a firewall rule that sometimes gets missed, screenshots attached. What am I missing? Why does it sometimes endup with the standard floating rule "Default deny / state violation rule"?
February 15, 2023, 03:18:41 PM #1
What does "standard Floating rule" mean?

What interface is that rule on?
You shouldn't be using floating rules unless you absolutely have to.
February 15, 2023, 03:22:14 PM #2
It's the top "Automatically generated rules", notice it's "last match".
February 15, 2023, 03:26:20 PM #3 Last Edit: February 15, 2023, 03:34:26 PM by chemlud
It is what it says: State violation. No state, no traffic.

Do a package capture and watch your "Nest" at work. Most likely it tries to reuse the tcp connection that is already closed and then starts a fresh session (passed).
kind regards
chemlud
____
"The price of reliability is the pursuit of the utmost simplicity."
C.A.R. Hoare

felix eichhorns premium katzenfutter mit der extraportion energie

A router is not a switch - A router is not a switch - A router is not a switch - A rou....
February 15, 2023, 04:03:31 PM #4
Indeed you are correct sir. Much appreciated.
Print
Go Up Pages1
User actions