I'm seeing these error messages in my SonicWall firewall (SonicOS Enhanced 6.2.7.1-23n):
Ethernet Header
Ether Type: IP(0x800), ......
IP Packet Header
IP Type: UDP(0x11), Src=..., Dst=...
UDP Packet Header
Src=[5060], Dst=[5060], Checksum=0x416c, Message Length=991 bytes
Application Header
Not Known:
Value:[1]
DROPPED, Drop Code: 702(Packet dropped - Policy drop), Module Id: 27(policy), (Ref.Id: _1857_rqnke{Ejgem) 4:3)
I've googled the heck out of all combinations, but I can't seem to find what this is. I see max of 404 code, and no explanation how to trace this drop to the policy. What's more mysterious, (this is SIP protocol) it allows the first exchange to establish the call, but it blocks any packets after that, like re-INVITE when timeout is approaching, or BYE when the other party hangs up.
Any pointers would be greatly appreciated!
Best Answer
Holy thread revive...Leaving this in case other come across this issue in the future.
I saw this when setting up remote client with SSLVPN. Set ALL allow from SSLVPN to LAN subnets. Client side would connect but would pass no traffic. Packet capture showed same drop message. After wiping and reconfiguring, the SSLVPN traffic was able to pass, as I continued to configure, once I got to the Wireless setup (1 production, 1 guest), the issues returned when I bridged the onboard wireless interface to the LAN interface. Everything was working before bridging the connection, shortly after bridging, packets started dropping with this error message. I resolved by changing wireless interface from bridged to static IP on separate subnet and allowing that traffic back on the production LAN. May also be able to resolve with firewall rule between SSLVPN and WLAN.