Menu

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

Drop Code: 95(Access Rule Policy not found)

dojjandojjan Newbie ✭
edited December 2020 in High End Firewalls

Hey!

I'm wondering if anyone ever heard of this drop code? I've not stumbled into it before now.

I can not find any information regarding this drop code.

I'm having issues with certain clients behind an IPSEC tunnel reaching servers in a local zone in a supermassive 9200.

When the client ping the server, I can see the traffic being consumed and then forwarded out of the correct interface.

I can see the server reply, but the sonicwall drops the packet with Drop Code: 95(Access Rule Policy not found).

*This is NOT the implicit deny rule.

*The initial traffic is allowed, and forwarded, but the reply is dropped which it should not be, since its stateful.

*The client is behind an IPSEC.

*The server is behind a local interface/zone.


Cheers!

Category: High End Firewalls
Reply

Answers

  • shiprasahu93shiprasahu93 Moderator
    Hello @dojjan ,

    You're right, this is a stateful firewall and hence the reply should be also allowed. If you don't mind, could you please share a screenshot of the packet capture that you've taken for this?

    Thanks!

    Shipra Sahu

    Technical Support Advisor, Premier Services

  • dojjandojjan Newbie ✭

    Hi, thanks for the fast reply.

    I sure can.

    These are ICMP requests, and the replies (red).

    Screenshot 2020-12-08 at 12.23.40.png


Sign In or Register to comment.