Firewall rule not stopping tcp port 63000
Posted: Tue Apr 21, 2015 6:46 pm
Hello,
Initially I created the rule pictured as chain=virus. As far as I can tell all the other chain=virus rules are working correctly with the action=jump chain=virus rule. When we discovered the rule was not stopping incoming tcp port 63000 traffic I changed it from chain to forward and made it rule #0 so it is the first rule processed. The ethr1 port I am torching in the screen cap is WAN port, connected to the Internet via a public IP address. We see lots of traffic to destination port 63000 and on the LAN side of the router we are seeing the traffic to port 63000 is being forwarded.
The screen cap shows data coming into the router from the Internet going to port 63000 and the firewall rule shows no packets / bytes have triggered the rule. This had been running for several minutes before I took the screen cap, there had been many many port 63000 packets showing up on Torch.
So what am I doing wrong here ?
Thanks
Initially I created the rule pictured as chain=virus. As far as I can tell all the other chain=virus rules are working correctly with the action=jump chain=virus rule. When we discovered the rule was not stopping incoming tcp port 63000 traffic I changed it from chain to forward and made it rule #0 so it is the first rule processed. The ethr1 port I am torching in the screen cap is WAN port, connected to the Internet via a public IP address. We see lots of traffic to destination port 63000 and on the LAN side of the router we are seeing the traffic to port 63000 is being forwarded.
The screen cap shows data coming into the router from the Internet going to port 63000 and the firewall rule shows no packets / bytes have triggered the rule. This had been running for several minutes before I took the screen cap, there had been many many port 63000 packets showing up on Torch.
So what am I doing wrong here ?
Thanks