FLEX 100H firewall zone bug

Options
p4_greg
p4_greg Posts: 29  Freshman Member
Network Detective-New Adventure Badge First Comment Friend Collector Third Anniversary

We ran into some odd behavior that appears to be a bug on a FLEX 100H running latest 1.32 firmware.

We have a firewall rule which blocks NetBIOS packets from ANY-to-WAN, and another rule which allows all packets from LAN-to-IPSec. For some reason, the ANY-to-WAN rule is blocking packets that are supposed to be sent over the VPN.

We can work around this issue if we reverse the order of these rules so the IPSec rule is above the ANY-to-WAN rule.

Why is the ANY-to-WAN rule blocking destination IPs which should be in the IPSec zone?

See screenshots below.

any-wan.png lan1-ipsec.png firewall-blocked.png firewall-blocked1.png ipsec-policy.png

All Replies