Net Firewall Blocking Packets On A Low Security Interface

Home Forums Discussions Support Portal Net Firewall Blocking Packets On A Low Security Interface

This topic contains 7 replies, has 3 voices, and was last updated by  valar2006 12 years ago.

Viewing 8 posts - 1 through 8 (of 8 total)
  • Author
    Posts
  • #4937

    alvin987
    Participant

    I have installed NetFirewall on windows 2000 server SP4 and everything is working fine except it is blocking some packets on an internal interface which is set to low security. I see these in the log file as blocked. This interface is only used to talk to a SQL Server which is on the internal network and I have no firewall rules blocking any traffic on this interface. I have even added rules to specifically allow the traffic with no luck. It seems to be only on inbound packets coming from the SQL Server. It is causing the application to get General Network Errors and stop. Are there any default rules that block traffic ie corrupt packets, etc that I should know about that might help me trace down this issue. This error was not occuring before I installed Net Firewall. I am using version 2.3.1.2. I have also checked the switch and can see to errors on either port. Any help would be appreciated.

    #5782

    Vadim Smirnov
    Moderator

    By default only fragmented packets are dropped in low security mode, others are passed.

    What the reason is speciifed for blocked packets? Is it a rule or just General Security Policy?

    #5783

    alvin987
    Participant

    Since I added the rule to specifically allow packets, it’s that rule that shows in the log as blocking it. The strange thing is that I’m running net firewall on the sql server also, and it is not blocking the packets out. Only the server receiving the packets is blocking it inbound. Also we seem to have narrowed it down to one application. There are other processes running on the box pulling information from the sql server that never get any packets blocked. It’s a very strange problem.

    #5784

    Vadim Smirnov
    Moderator

    Could you please e-mail the screenshot of the log with blocked packets and the screenshot of the rules list to support@ntkernel.com.

    #5785

    alvin987
    Participant

    The requested info has been sent

    #5786

    alvin987
    Participant

    Is there anyway to completely disable netfirewall on an interface???

    #5787

    Vadim Smirnov
    Moderator

    You can create PASS ALL rule for the interface you want to disable NeT Firewall at. This rule should have highest priority(an example ID=1).

    #5788

    valar2006
    Participant

    Well, this is right…

Viewing 8 posts - 1 through 8 (of 8 total)

You must be logged in to reply to this topic.