Mailing List ecs-isp@2rosenthals.com Archived Message #464 previous message next message back to list

From: "Massimo S." <ecs-isp@2rosenthals.com> Full Headers
Undecoded message
Subject: Re: [eCS-ISP] InJoy FW 4.2.2 issue with a rule "failed to send packet"
Date: Thu, 27 Apr 2023 19:37:59 +0200
To: eCS ISP Mailing List <ecs-isp@2rosenthals.com>



Il 27/04/2023 09:07, Steven Levine ha scritto:
In <list-7057545@2rosenthals.com>, on 04/26/23
    at 09:20 PM, "Massimo S." <ecs-isp@2rosenthals.com> said:

Hi Massimo,

rule123
         Protocol = TCP,
         Destination-Port = "54444",
         Destination = "My_IP",
         Rule-Action = Allow,
         Direction = Bidirectional

to my firerule.cnf

injoy stop working, every tcpip connection do not work (server completely
isolated) and i get this error in activity.log

Fatal: failed to send packet (32799 - 0)

The error code translates to

#define ERROR_LONGLOCK                  32799

and 0 is the number of bytes sent.

This means for an as yet unknown reason the DosWrite to the pipe that
gateway.exe uses to communicate with fxwrap.sys timed out.

Did you check ijfw\logs\firewall.log?  This is where rule errors are
typically reported.

no errors in firewall.log:

2023/04/26 13:31:28  FIREWALL PLUGIN: Initialized successfully                  2023/04/26 13:31:28  FIREWALL PLUGIN: Version 4.2, build timestamp May 22 2014 13:49:46                    2023/04/26 13:31:28  FIREWALL PLUGIN: + Dynamic firewall, + URL handling, + Safe-Mail, + Traffic Shaper
2023/04/26 13:31:35  FIREWALL PLUGIN: Configuration successfully loaded         2023/04/26 13:31:35  FIREWALL PLUGIN: Ready...

since i use includes (with 3 rule files) and i've about 417 KiloBytes in
total of rules anyone knows if i'm reaching a physical limit of the
product?

If you were, it would be reported in firewall.log.

to have the firewall working again and so tcp/ip communications i had to
comment one of these 3 include file

What does this mean?  You stated above, you added one rule and thi broke
the firewall.  What does have to do with "these 3 include file"?

Steven

i've 3 include files containing rules and another number of rules in firerule.cnf

#include <firewall/spam.cnf>                                                  #include <firewall/r_p_ddos.cnf>                                                                                                    #include <firewall/url_filter.cnf>

i had to comment one of these to have injoy working again


massimo
Subscribe: Feed, Digest, Index.
Unsubscribe
Mail to ListMaster