Endpoint Protection

View Only

Back to discussions

Expand all | Collapse all

How to allow SEP firewall for Squiggle Lan Messenger version 3.3

1. How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
Migration User
Posted Jan 17, 2014 01:01 AM
| view attached (2)

Reply Reply Privately
Hi everyone,

I'm having a hard time creating a policy to allow this specific application on SEP firewall. The only firewall policy that works properly was the contradiction to the default policy "Block all other IP traffic" (second to the last rule). Kindly see attached for the logs for my testing and for the squiggle client.

Thanks,

Attachment(s)

firewalllogs.txt 314 KB 1 version

Squiggle-3.3 Client.zip 3.07 MB 1 version
2. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
Rafeeq
Posted Jan 17, 2014 01:12 AM

Reply Reply Privately
Squiggle.exe is allowed as per the logs

from rule 5 (outgoing)and its again blocked by rule 15 ( incoming)

can you move this rule 5 to the top, above the blue line and make it allowed for outgoing and incoming also
3. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
Migration User
Posted Jan 17, 2014 01:33 AM

Reply Reply Privately
Hi Rafeeq,

Thanks for the reply, rule 5 is "Block ICMPV6" ?
4. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
Migration User
Posted Jan 17, 2014 01:42 AM

Reply Reply Privately
Hi Rafeeq,

Still the same. The second to the last rule block it. I already created a rule to allow *squiggle* to any host, and IP service but still the second to the last rule block it.

5. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

Recommend

Rafeeq

Posted Jan 17, 2014 02:41 AM

These rules are processed in order, if it does not finds the match the second last is blocking it.

did you add the application or souce / dest ip ,

For incoming rule you might need to add TCP

1/17/2014

11:34:13

Blocked

Incoming

TCP

10.20.30.21

00-0C-29-E1-92-A9 49476 10.20.30.13

00-0C-29-DF-76-48 9998 Administrator SYMTEST Default 1 1/17/2014 11:34:01 AM 1/17/2014 11:34:01 AM Block all other IP traffic

and log

6. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
Migration User
Posted Jan 17, 2014 03:16 AM

Reply Reply Privately
Yes I already did. I'm just wondering why the firewall rule still afftect the squiggle when I specified the application and configure other to "any". Is it ok if you test on your side the scenario? the squiggle is just a folder base application, you just need 2 clients to check their connection.

Thanks
7. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
Rafeeq
Posted Jan 17, 2014 06:48 AM

Reply Reply Privately
whats the version of SEP you are using?
8. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
Migration User
Posted Jan 17, 2014 08:50 PM

Reply Reply Privately
Its 12.1 ru3 sir.
9. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
Migration User
Posted Jan 20, 2014 06:07 AM

Reply Reply Privately
As a workaround, create a new FW rule and try to allow port 9998 (TCP and UDP) for both incoming and outgoing traffic. Leave the application field blank.
10. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
Migration User
Posted Jan 20, 2014 10:05 PM

Reply Reply Privately
Thanks greg. It works fine allowing only 9998 UDP for both incomung and outgoing traffic. But I dont want to leave the application on any. Any idea what applications should I only allow? Allowing only squiggle wont work.
11. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
ℬrίαη
Posted Jan 20, 2014 10:23 PM

Reply Reply Privately
If allowing only squiggle.exe doesn't work, I would use a program such as tcpview to see what other executable is trying to communicate out...
12. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
Migration User
Posted Jan 20, 2014 10:52 PM
| view attached

Reply Reply Privately
Hi Brian,

Thanks for some advise, can you check the logs I create using TCP view? Thanks

Attachment(s)

tcpviewlog.txt 6 KB 1 version
13. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

0 Recommend
ℬrίαη
Posted Feb 22, 2014 01:30 PM

Reply Reply Privately
Are you defining it as "squiggle.exe" in the rule?

Endpoint Protection

How to allow SEP firewall for Squiggle Lan Messenger version 3.3

Migration UserJan 17, 2014 01:01 AM

RafeeqJan 17, 2014 01:12 AM

Migration UserJan 17, 2014 01:33 AM

Migration UserJan 17, 2014 01:42 AM

RafeeqJan 17, 2014 02:41 AM

Migration UserJan 17, 2014 03:16 AM

RafeeqJan 17, 2014 06:48 AM

Migration UserJan 17, 2014 08:50 PM

Migration UserJan 20, 2014 06:07 AM

Migration UserJan 20, 2014 10:05 PM

ℬrίαηJan 20, 2014 10:23 PM

Migration UserJan 20, 2014 10:52 PM

ℬrίαηFeb 22, 2014 01:30 PM

1. How to allow SEP firewall for Squiggle Lan Messenger version 3.3

2. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

3. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

4. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

5. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

6. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

7. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

8. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

9. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

10. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

11. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

12. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3

13. RE: How to allow SEP firewall for Squiggle Lan Messenger version 3.3