View Full Version : Windows Firewall Blocking Incoming SB 64.34.160.76 Cache Server
hotshot
2006-11-02, 22:13 PM
64.34.160.76 is getting lots of dropped requests like:
2006-11-01 23:05:32 DROP ICMP 64.34.XXX.XXX 64.34.160.76 - - 100 - - - - 3 3 - SEND
Anyone know why? The 100 can be other numbers too like 99, 101 etc.
Am I suppossed to allow incoming echo request under IMCP?
hotshot
2006-11-02, 22:48 PM
We are also getting hundreds/thousands of dropped attempts from Neighboring SB servers on port 137/138, is this normal? This is the NetBios port.
hotshot
2006-11-03, 19:35 PM
Should I allow UDP 137/138 for my subnet? I noticed on my old server this was setup this way, however I'm not sure why other servers on the network should be able to make these connections other than it gets logged in the firewall.
hotshot
2006-11-04, 17:06 PM
Okay I figured out I needed to open up those ports for filesharing, however now I am getting ICMP packets dropped(blocked) from the SB nameservers on port 100, 101 and 99. I have allow incoming echo request checked under the windows firewall configuration, is there something I can do to allow these requests below? I know that you cannot add an IP except for TCP/UDP traffic.
2006-11-04 16:27:57 DROP ICMP 64.34.xxx.xxx 64.34.160.76 - - 100 - - - - 3 3 - SEND
2006-11-04 16:27:58 DROP ICMP 64.34.xxx.xxx 64.34.160.92 - - 100 - - - - 3 3 - SEND
knightfoo
2006-11-05, 14:18 PM
Okay I figured out I needed to open up those ports for filesharing, however now I am getting ICMP packets dropped(blocked) from the SB nameservers on port 100, 101 and 99. I have allow incoming echo request checked under the windows firewall configuration, is there something I can do to allow these requests below? I know that you cannot add an IP except for TCP/UDP traffic.
2006-11-04 16:27:57 DROP ICMP 64.34.xxx.xxx 64.34.160.76 - - 100 - - - - 3 3 - SEND
2006-11-04 16:27:58 DROP ICMP 64.34.xxx.xxx 64.34.160.92 - - 100 - - - - 3 3 - SEND
The order of the IP addresses and the "SEND" at the end of the line implies that these are outbound packets being dropped. If they were coming FROM the nameservers, those IP addresses would probably be listed first. I am not sure how fine-grained the Windows Firewall controls are, but any decent firewall should let you adjust ICMP traffic settings.
hotshot
2006-11-10, 00:18 AM
Ended up checking the box under firewall settings that said:
"allow outgoing destination unreachable"
vBulletin® v3.6.8, Copyright ©2000-2008, Jelsoft Enterprises Ltd.