When checking the Firewall Events in the Vulnerability Protection Manager (Events > Reports > Events > Firewall Events), the following event(s) can be seen:
Reason: Invalid IP Datagram Length Action: Deny Rank: 50 Direction: Outgoing Frame Type: IPv6
The issue is caused by the Vulnerability Protection Agent. It does not calculate the correct length for IPv6 LSO packets, so the packet will be dropped.
To resolve this issue, do the following:
- Ensure that your Vulnerability Protection Manager is version 2.0.8324 or later because the Vulnerability Protection Agent Hotfix is based on the Patch 3 Version. This patch can be downloaded here.
- Contact Trend Micro Technical Support to get the Vulnerability Protection Agent Hotfix Build 220.127.116.1184 which includes the fix for the Invalid IP Datagram Length issue.
- For instructions about how to upgrade Vulnerability Protection Manager and Vulnerability Protection Agent, please refer to the installation guide.