Comments
-
Still no idea what is happening here. If I bypass the WG and connect directly with a static to the device it responds. PCAPs from the WG don't show anything other than the server sending SYN packets. If I do a PCAP on the devices that are online, I see no traffic, even though I know there is traffic being sent.
-
I have been looking at pcaps from the WG for the past 3 days. I can't find anything to show why the device becomes unreachable. I see SYN requests for the port to the panel from the server, but no response from the SYN packets and no respone when pinging. Something in the connection is causing the WG to block all traffic…
-
Hey James, You are correct that disabling the TCP syn check didn't resolve the problem. At this point I created a custom firewall policy with the required port and the server and panels in the to/from to extend the timeout for just that connection to see if it resolves the issue. Will likely open a support ticket with the…
-
Looks like it was this, after digging though logs I found the answer. https://community.watchguard.com/watchguard-community/discussion/1584/tcp-syn-checking-exception