Jump to content


Photo

UDP port traffic will not traverse through Web Application Firewall

Port UDP WAF Web Application Firewall

  • Please log in to reply
1 reply to this topic

#1 Chris Hauret

Chris Hauret
  • Members
  • 1 posts

Posted 02 August 2012 - 03:26 PM

I have a recent new installation of a WAF 460. All of my TCP port services are working properly but obviously there are no UDP services. What is needed is a UDP port of 1149 traffic to traverse the WAF in any way possible. I have had a support case open for over 24 hours and i and they have attempted to setup DNAT and firewall rules permitting the UDP traffic to the backend server. None of these solutions have resolved the issue as of yet.

The firewall rules in place as of now are as follows:

From Add From NetM InterF Proto ServPorts To Add To NetM Action
0.0.0.0 0.0.0.0 WAN UDP 1194 10.1.2.201 255.255.255.255 Allow
0.0.0.0 0.0.0.0 WAN UDP 1-65535 10.1.1.201 255.255.255.255 Allow
10.1.1.201 255.255.255.255 LAN TCP/UDP 1-65535 0.0.0.0 0.0.0.0 Allow

Pre SNAT Source Pre SNAT SourceM Proto Dest Port Outgoing IntF Post SNAT Source
10.1.1.201 255.255.255.255 TCP/UDP 1-65535 WAN 10.1.2.201


Barracuda support at this point is starting to say this possibly is a bug.


Any input would be great.

#2 Sivakumar Arumughan

Sivakumar Arumughan
  • Barracuda Team Members
  • 1 posts

Posted 10 August 2012 - 09:01 AM

This was an issue that we discovered later and there is a hot patch available to correct it.