Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Steve_Payne1
Contributor

Traffic dropped on implied rule 0

this week,  we have had several outages, which is affecting our proxy servers and Ad domain DNS servers

 

the checkpoint is dropping the traffic and reason is "implied rule 0"

 

I've tried failing over to HA box

tried rebooted

version is R80.30  with HF 140

with

droped dns.png

our proxy, it would randomly drop traffic from different proxy,

0 Kudos
6 Replies
_Val_
Admin
Admin

What does "Description / More" show?

0 Kudos
_Val_
Admin
Admin

0 Kudos
Steve_Payne1
Contributor

thanks for the info,  problem i have is that only relates to DNS traffic and my issue is related to DNS/HTTP/HTTPS  etc

 

here is another log  so you can see all info,   also below is a strange nat issue,  the traffic should be nat'd behind nat rule 20, but is getting nat'd behind nat rule 0

 

dns traffic dropped.png

dropped_nat.png

0 Kudos
_Val_
Admin
Admin

@Steve_Payne1 DNS failure will lead to intermittent web traffic issues.

Try the solution and tell me if it helps. If it does not, open a TAC case, but I am pretty confident it will work for you.

0 Kudos
Steve_Payne1
Contributor

my inspection setting for that is set to inactive

0 Kudos
nzmatto
Participant

Did you ever get a response / fix for this. I have the same issue with DNS requests being dropped by an implied policy. The article referenced above only relates to items up to R80.20 and I'm on R80.40. Also neither of the options it talks about are active within my IPS. It looks like to change them I'd need to enable them, which does not seem like an optimal way to do things. 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events