The packet was dropped by Misc.

Options

USG 310

We are having problems contacting a server on internet. While troubleshooting we found that we can ping the host directly from the WAN interface on the firewall, but not from inside. Either from a computer or by pinging through LAN interface on firewall.

I don't see anything in the config that would block this traffic.

I found this in routing traces:

The packet outgoing interface: WAN1
The packet outgoing interface: x
The packet was dropped by Misc.

What is misc? I tried searching for this statement but found no hits at all. Are there any steps I can use to troubleshoot it further?

All Replies

  • Zyxel_Cooldia
    Zyxel_Cooldia Posts: 1,462  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    edited November 2023
    Options

    Hi @TommyB,

    Welcome to Zyxel community. does it have any blocked log in event log(MONITOR > Log > View log)?

  • TommyB
    Options

    Thanks Cooldia!

    I could not stay away from it and added an allow rule at the top of the security policy. Problem was that we had a FQDN object that blocks access to a news site that is hosted on AWS which seems to be shared with the site we were trying to reach.

  • Zyxel_Cooldia
    Zyxel_Cooldia Posts: 1,462  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    Options

    If the destination shares the same IP address, it will be blocked by the security policy.

Security Highlight