{"id":1372,"date":"2015-02-13T16:08:04","date_gmt":"2015-02-13T16:08:04","guid":{"rendered":"http:\/\/emtunc.org\/blog\/?p=1372"},"modified":"2015-02-20T12:50:15","modified_gmt":"2015-02-20T12:50:15","slug":"check-point-violated-unidirectional-connection-with-udp-traffic","status":"publish","type":"post","link":"https:\/\/emtunc.org\/blog\/02\/2015\/check-point-violated-unidirectional-connection-with-udp-traffic\/","title":{"rendered":"Check Point: Violated Unidirectional Connection with UDP Traffic"},"content":{"rendered":"<p>You get a &#8216;Violated unidirectional connection&#8217; message in the logs with UDP traffic even if there are rules with &#8216;ANY&#8217; and &#8216;ALLOW&#8217; in the rule base.<\/p>\n<p>In my case the problem was that I could not PXE boot clients (using Windows Deployment Services or WDS)<\/p>\n<p><!--more--><\/p>\n<p>The solution to the problem is as follows:<\/p>\n<ol>\n<li>Add a new service. Select UDP and enter the port number (in my case, port 4011 for ProxyDHCP)<\/li>\n<li>Click Advanced and where it says &#8216;Protocol Type&#8217; select\u00a0<em>None<\/em>.<a href=\"http:\/\/emtunc.org\/blog\/wp-content\/uploads\/2015\/02\/cp-add-service-advanced.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1373\" src=\"http:\/\/emtunc.org\/blog\/wp-content\/uploads\/2015\/02\/cp-add-service-advanced.png\" alt=\"cp-add-service-advanced\" width=\"494\" height=\"649\" srcset=\"https:\/\/emtunc.org\/blog\/wp-content\/uploads\/2015\/02\/cp-add-service-advanced.png 494w, https:\/\/emtunc.org\/blog\/wp-content\/uploads\/2015\/02\/cp-add-service-advanced-228x300.png 228w\" sizes=\"auto, (max-width: 494px) 100vw, 494px\" \/><\/a><\/li>\n<li>Now add a rule to the rule base and add the new service we just created<\/li>\n<li>Install policy<\/li>\n<li>Done!<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>You get a &#8216;Violated unidirectional connection&#8217; message in the logs with UDP traffic even if there are rules with &#8216;ANY&#8217; and &#8216;ALLOW&#8217; in the rule base. In my case the problem was that I could not PXE boot clients (using Windows Deployment Services or WDS)<\/p>\n","protected":false},"author":32,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"footnotes":""},"categories":[1],"tags":[159,160],"class_list":["post-1372","post","type-post","status-publish","format-standard","hentry","category-tech","tag-check-point","tag-firewall"],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/p1trTO-m8","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/emtunc.org\/blog\/wp-json\/wp\/v2\/posts\/1372","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/emtunc.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/emtunc.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/emtunc.org\/blog\/wp-json\/wp\/v2\/users\/32"}],"replies":[{"embeddable":true,"href":"https:\/\/emtunc.org\/blog\/wp-json\/wp\/v2\/comments?post=1372"}],"version-history":[{"count":2,"href":"https:\/\/emtunc.org\/blog\/wp-json\/wp\/v2\/posts\/1372\/revisions"}],"predecessor-version":[{"id":1383,"href":"https:\/\/emtunc.org\/blog\/wp-json\/wp\/v2\/posts\/1372\/revisions\/1383"}],"wp:attachment":[{"href":"https:\/\/emtunc.org\/blog\/wp-json\/wp\/v2\/media?parent=1372"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/emtunc.org\/blog\/wp-json\/wp\/v2\/categories?post=1372"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/emtunc.org\/blog\/wp-json\/wp\/v2\/tags?post=1372"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}