Disable Firewall and still have Internet Access?

[FormBurden]

For troubleshooting purposes is there a way to turn off the firewall without completely shutting down the internet access? Mainly do this for troubleshooting ports, or why a software isn't working correctly - to tell if the issue is on my end.

There a way to do this? Some kind of filters or something? I've seen "Disable Firewall", but obviously that kills all traffic outbound. Is it some kind of NAT setting?

Thanks.

[c-mu]

I would not completely shutdown the firewall. For testing purposes, i would create an Firewall Rule, that allows everything (destination and protocoll "any") for that specific source IP and put the rule on the very top.

[FormBurden]

Oh ok, that makes sense. But what would it be? A WAN rule, or LAN rule? Nat Rule? Sorry, I'm still learning all of this, so it's a bit confusing still.

[seithan]

Oh ok, that makes sense. But what would it be? A WAN rule, or LAN rule? Nat Rule? Sorry, I'm still learning all of this, so it's a bit confusing still.

Most of the times its WAN. LAN is usually unfiltered or even unchecked, as is outbound, unless specified.

[fastboot]

Hi.

Like allready mentioned you could set a ANY:ANY rule. Also I recommend to enable logging for this rule und put it up to the frist entry in the list of the rules. Also make sure the Default DENY rule will log to make the tshoot easier.

Also check if LAN and other interfaces are not filtered. If NAT is used etc... So there is a lot which needs to be checked.

With more examples, it would be easier to help you. Usually for a sec engineer the follwoing is needed: SRC, DST, PORT, PROTOCOL and sometimes an overview of the network e.g routing.

Cheers

fastboot