Menu

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

*** [NSA] - ARP DROPPED

rigiba8rigiba8 Newbie ✭
in Network Security Manager
error ARP_NSA.jpg

Hello team,

this failure is occurring on the x0 interface and does not allow communication on the connected networks, why this behavior may occur

best regards




///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////

Ethernet Header

 Ether Type: VLAN ID = 60, Priority = 0

 Ether Type: ARP(0x806), Src=[02:e0:ed:35:80:c3], Dst=[ff:ff:ff:ff:ff:ff]

ARP Packet:

 Not enough bytes to decode the ARP payload

Value:[0]

DROPPED, Drop Code: 21(Packet on invalid vlan), Module Id: 16(fwCore), (Ref.Id: _1732_kprwvJqqm) 1:1)

///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////

Category: Network Security Manager
Reply

Best Answer

  • CORRECT ANSWER
    BWCBWC Cybersecurity Overlord ✭✭✭
    Answer ✓

    @rigiba8 the Packet-Monitor is giving it away, your Firewall is receiving network packets with VLAN-ID 60 tagged and you don't have a virtual interface assigned with that ID X0:V60. Looks like a switch misconfiguration to me.

    To resolve this, there a couple of options:

    • create VLAN 60 on X0 if needed
    • assign only the VLAN needed for X0 on the switch port connected to X0, forbid the rest

    Hope this helps.

    --Michael@BWC

Answers

  • rigiba8rigiba8 Newbie ✭

    HI, Michael@BWC

    Verify the port configuration for vlan 60 - this ok

    but exist a connect bridge to machine FireEye (trafic analizer),

    changed connect sonicwall to switch directly

    problem resolv :-)


    regards

Sign In or Register to comment.