Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Firewall events show IPv6 packets are blocked even if the Firewall/DPI is disabled in Deep Security

    • Updated:
    • 15 Oct 2015
    • Product/Version:
    • Deep Security 8.0
    • Deep Security 9.0
    • Deep Security 9.5
    • Deep Security as a Service 2.0
    • Platform:
    • VMware ESX 4.1
    • VMware ESX 5.0
    • Windows 2003 Enterprise
    • Windows 2008 Enterprise
Summary

Learn how to work around the issue where the IPv6 packets are blocked, as seen in the Firewall events, even if the Firewall/Deep Packet Inspection is disabled on the Deep Security Agent (DSA) or Deep Security Virtual Appliance (DSVA).

Firewall feature is not licensed

Firewall feature is disabled.

Firewall events blocking IPv6

Firewall Events show IPv6 packets are blocked.

Details
Public

Deep Security has several filter layers where IPv6 goes through (verifier, modulesmicro, blacklist, Firewall/DPI) for verification.

In this case, the IP header was checked at the Verifier level and was found to have malformed packets. This means that IPv6 was held at the Verifier level blocking the traffic despite the Firewall and DPI being disabled.

As a workaround, please do the following:

For Deep Security 8.0:

  1. Go to DSM > System > System Settings > Network Engine > Advanced.
  2. Enable the Use custom driver settings check box and then set the following options to No:
    • Block IPv6 for Pre 8.0 Agents and Appliances
    • Block IPv6 for 8.0 and Above Agents and Appliances
  3. Click Save for the settings to take effect.
 
This issue will be addressed once we release Service Pack 4 for Deep Security 7.5 and once we release an update for Deep Security 8.0.

For Deep Security 9.0:

  1. Go to Policy/Computer Editor > Settings > Network Engine.
  2. Go to Advanced Network Engine Settings and set the following options to No:
    • Block IPv6 on Agents and Appliances versions 8 and earlier
    • Block IPv6 on Agents and Appliances versions 9 and later
  3. Click Save for the settings to take effect.
Premium
Internal
Rating:
Category:
Configure; Troubleshoot
Solution Id:
1060312
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.