12-23-2016 08:33 AM - edited 03-12-2019 01:42 AM
Hi all and Merry Christmas :)
i have a problem configuring my firewall the scenario is i have couple of machines that contact a syslog server via UDP outside the network the problem when the server respond it responds in an other source port when it comes to my firewall he drop the packets because he couldn't track the session my machines keep sending the data over and over, can you help me to configure my firewall to allow that thank you very much for helping.
Solved! Go to Solution.
12-24-2016 10:04 PM
If the port is being changed, the only solution is to open corresponding port(s) for the traffic coming from syslog server to machines using access-list. For udp connection, there is no state, hence the only way ASA can keep a track of connection is by tracking the ip address and port number.
In this case, please open an access list for inbound connection as well and it should work.
HTH
-
AJ
12-24-2016 10:04 PM
If the port is being changed, the only solution is to open corresponding port(s) for the traffic coming from syslog server to machines using access-list. For udp connection, there is no state, hence the only way ASA can keep a track of connection is by tracking the ip address and port number.
In this case, please open an access list for inbound connection as well and it should work.
HTH
-
AJ
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: