ICMP policy?
Hi,
I'm trying to fault-find a problem where my Citrix connection from an iGel laptop keeps freezing.
The only think that I've currently identified as being denied is
_2023-07-06 17:57:04 **Deny **172.16.0.11 172.16.0.1 icmp Ether-2-DMZ-Work Firebox **Denied 84 64 **(Unhandled Internal Packet-00) proc_id="firewall" rc="101" msg_id="3000-0148" Traffic_
How do I create a rule to handle this ICMP traffic?
Thanks.
David
0
Sign In to comment.
Comments
Add a Custom Packet Filter with Protocol = ICMP
It would be helpful to know the ICMP type being denied.
The type list is here:
https://www.iana.org/assignments/icmp-parameters/icmp-parameters.xhtml
A packet capture will show the ICMP packet and will include the type.
You can do a packet capture on your firewall using TCPDUMP.
Run Diagnostic Tasks on Your Firebox
Web UI:
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/system_status/stats_diagnostics_tasks_web.html
Firebox System Manager:
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/fsm/log_message_learn_more_wsm.html
Thanks BB. Will report back
I think I've cleared this.
Nothing specific to report back... sitll having the Citrix issue though.