search cancel

Sonicwall SSL VPN's Connect Tunnel network is blocked although application is allowed in firewall policy under Endpoint Protection Manager console.

book

Article ID: 256853

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

Sonicwall SSL VPN's Connect Tunnel network is blocked although application is allowed in firewall policy under Endpoint Protection Manager console.

Environment

SEPM : 14.3 RU2

SEP : 14.2 RU2 14.2.5323.2000

Cause

Found packet dropped for protocol 0xa42 under WPP logs.

==========================================================================

[12/19/2022-13:21:38.270] tse : 325c : 1318 : TRACE_DEBUG : TRACE_LEVEL_INFORMATION : CSecurityEngine::DropPacketExt : SecurityEngine_cpp835 :DropPacketExt:TSE 3057 : *** DROP PACKET ***

[12/19/2022-13:21:38.270] tse : 325c : 1318 : TRACE_DEBUG : TRACE_LEVEL_INFORMATION : CSecurityEngine::DropPacketExt : SecurityEngine_cpp836 :dump info:======== TsPacket ====== BA: 0 == protocol: 1 ===

=== EtherII Packet=== len:60==== nic:0=====

00-00-80-01-94-22  ---> 45-00-00-3c-ab-70 , protocol = 0xa42

==========================================================================

Resolution

Solution:

 

Add Ethernet protocol 0xa42 in firewall and allow communication.

 

  1. Navigate to Endpoint Protection Manager Console.
  2. Network Services -> Add a Network Service -> Give Service Name -> Click Add -> Select Ethernet Protocol -> Add 0xa42 Protocol Type -> OK
  3. Policies -> Firewall
  4. Select desired policy -> Windows Settings -> Rules -> Add Rule
  5. Type Rule Name -> Select Allow in Action -> Select above protocol in Service -> OK