News: This forum is now permanently frozen.
linktree m0n0wall Forum  >  m0n0wall Support (English)  >  Firewall/NAT
linktree Topic: Firewall blocks desirable traffic
Pages: [1]
Topic: Firewall blocks desirable traffic  (Read 1235 times)
« on: December 18, 2008, 07:28:53 »
pdunai *
Posts: 5
Hi members,

I'm using the monowall for traffic shapping only and as such have set up firewall rules to let traffic freely pass through all interfaces. This works 99.999% of cases but I have now got application problems because the monowall suddenly blocks packets that are in preestablished sessions. Listed below is an example of packests that are dropped (as seen in the log). They are sent in a continuous flow so its not like the session drops out.

The only conclusion I can draw is that some tcp/ip rules have been broken and the monowall thinks the session is corrupted.

15:31:49.687527 vr2 @0:13 b 10.19.2.55,1639 -> 10.19.0.21,8080 PR tcp len 20 40 -AF IN
15:31:47.288990 vr2 @0:13 b 10.19.2.55,1639 -> 10.19.0.21,8080 PR tcp len 20 40 -AF IN
15:31:46.078496 vr2 @0:13 b 10.19.2.55,1639 -> 10.19.0.21,8080 PR tcp len 20 40 -AF IN

Does anyone know how to determine the specifics as to why thes packets are dropped such as which rule.
Alternatively does anyone know how I can disable the firewall function entirely without stopping the traffic shapping function?

Thanks
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines