To allow the necessary NLB traffic, allow the following rules:
| Name | Action Type | Priority | Direction | Frame Type | Protocol | Source IP | Source Port | Destination IP | Destination Port |
|---|---|---|---|---|---|---|---|---|---|
| NLB protocol 886F Frame | Force Allow | 0 - Lowest | Incoming | Other:886F | N/A | Any | N/A | Any | N/A |
| Outgoing TCP 49154 port | Force Allow | 0 - Lowest | Outgoing | IP | TCP | Any | Any | Any | 49154 |
| Incoming TCP 49155 port | Force Allow | 0 - Lowest | Incoming | IP | TCP | Any | Any | Any | 49155 |
| Incoming TCP 135 Port | Force Allow | 0 - Lowest | Incoming | IP | TCP | Any | Any | Any | 135 |
| Incoming UDP 5355 source port | Force Allow | 0 - Lowest | Incoming | IP | UDP | Any | 5355 | Any | Any |
| Incoming UDP 5355 destination port | Force Allow | 0 - Lowest | Incoming | IP | UDP | Any | Any | Any | 5355 |
Some necessary network protocols (e.g. DHCP, DNS, ARP, etc.) are not listed in the table above. Make sure those protocols are allowed if they are needed.
To monitor if there is still any NLB-related traffic being blocked, turn on the Tap mode:
- Go to Computer > Settings.
- Select the Advanced tab.
- On the Network Engine Mode section, choose Tap.