Internal Policy block traffic
Hi everyone.
i have WG 5800 device configuration but data from trusted cannot pass through interface external WG 5800. it looks like it's blocked by the Internal Policy but I can't find it.
thanks.
Log: traffic
2021-08-31 17:55:11 Deny 10.100.11.5 8.8.8.8 dns/udp 57978 53 VLAN_200 External User count exceeded 60 62 (Internal Policy) proc_id="firewall" rc="101" msg_id="3000-0148"
2021-08-31 17:55:12 Deny 10.100.11.5 8.8.8.8 dns/udp 39665 53 VLAN_200 External User count exceeded 60 62 (Internal Policy) proc_id="firewall" rc="101" msg_id="3000-0148"
2021-08-31 17:55:12 Deny 10.100.24.221 8.8.8.8 dns/udp 50879 53 VLAN_200 External User count exceeded 68 126 (Internal Policy) proc_id="firewall" rc="101" msg_id="3000-0148"
2021-08-31 17:55:12 Deny 10.100.24.221 8.8.8.8 icmp VLAN_200 External User count exceeded 60 126 (Internal Policy) proc_id="firewall" rc="101" msg_id="3000-0148"
Comments
What is "User count exceeded"? I thought WatchGuard firewalls did not have a hard limit on user numbers. Do you have a policy that restricts by number of users?
Gregg Hill
Hi.
I have no policy that restricts users. I have checked many times but don't know where the problem.
Seems your device is running without a license Feature key!
Have you a activated / registered the device to you WatchGuard account?
After device activation you can manually copy the Feature key from the WG Account to the Firebox configuration,
or you can do feature key synchronization…
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/basicadmin/feature_keys_get_c.html
I guess you did not start with the basics. Waw.