R65 - what have I done...!?!?

Advanced search

[trikki69]

Hi, first post and already asking a question!! 
I've just upgraded my border firewall from R55 to R65 SPLAT and found the transition problematic to say the least.
It looks as though R65 is interfering with all kinds of traffic going through the gateway, I had to disable Smart Defense yesterday to try and get some control over what it was doing.
I've had problems with nntp, http, https  and peer-to-peer to list a few.
I never had ANY problems with R55, rules that were defined in the rule base worked and worked very well, the firewall didn't interfere with anything unless I told it to.
I have a test host on my network that runs emule and nntp (Forte Agent) I use these apps to obtain difficult to find documents and software for testing purposes. I cannot get emule to connect properly no matter what the rule base says - I have also completely disabled Smart Defense on the gateway to no avail.
All ports and addresses are correctly defined in the policy, this worked fine with R55 (the R55 and R65 policies are identical)

Is there any way to get control over what it is actually doing and to get nntp and emule working correctly? If not I may have to go down the Cisco ASA or Sonic Wall route. 

Thankfully I'm running on an eval, I'm pleased I tried before I bought!! 

[juve]

What are the error messages in the logs? Does it drop on a real rule, a fake rule number or anything else?

Also, why not check out R70? SmartDefense wasn't the best of the best and its replacement (IPS) has been rewritten completely, plus the logs are a lot clearer on what happens. Only thing is you can't upgrade directly from R55, you have to pass over R65 first.

• Articles
• Knowledge base