Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Team_IT
Explorer

firewall blocks ephemeral ports https://xxxx.xxxx.com:7667

Jump to solution

Hi, 

Some of our users are trying to download a pdf from a site which uses the following port 

https://xxxx.xxxx.com:7667

We have a rule, which I believed worked, but now seems to block 

TCP Service 

Protocol HTTPS

Match by Customize 7667 (TCP)

Is this the correct way of doing things ?

Logs show CPEarlyDrop 

Or is there a better way of doing this ?

Thanks

Mike

0 Kudos
1 Solution

Accepted Solutions
_Val_
Admin
Admin

Also, did you look into sk111643 yet?

View solution in original post

4 Replies
_Val_
Admin
Admin

Can you show how the drop log looks like?

0 Kudos
_Val_
Admin
Admin

Also, did you look into sk111643 yet?

Team_IT
Explorer

Thanks, we sorted it this morning , it was the position of the FW rule in the end. 

Regards

Mike

0 Kudos
_Val_
Admin
Admin

Great to know!

0 Kudos