How do I allow fragmented packets on a TL-ER6120?
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
How do I allow fragmented packets on a TL-ER6120?
Region : UnitedStates
Model : TL-ER6120
Hardware Version : V1
Firmware Version :
ISP :
I have a TL-ER6120, with two WAN connections using transparent bridging. I have the connections setup in a failover configuration, not doing traffic or other balancing.
There is a device on my internal network that needs to initiate an outbound IPSec tunnel.
For whatever reason, the IPSec ALG is not effective, so I have manually enabled port forwarding on UDP 500, 4500, 123 and TCP 443 to this device. The last thing I need to enable is the passing of fragmented packets.
In the interface, I go to Firewall -} Attack Defense.
Under "Packet Anomaly Defense", no matter what set of features I choose anywhere else in the router (I have tried disabling literally every advanced feature) the "Block Fragment Traffic" option is checked AND grayed out so I cannot uncheck it.
How do I turn off this "feature" so it stops interfering with what I need my network to do?
Model : TL-ER6120
Hardware Version : V1
Firmware Version :
ISP :
I have a TL-ER6120, with two WAN connections using transparent bridging. I have the connections setup in a failover configuration, not doing traffic or other balancing.
There is a device on my internal network that needs to initiate an outbound IPSec tunnel.
For whatever reason, the IPSec ALG is not effective, so I have manually enabled port forwarding on UDP 500, 4500, 123 and TCP 443 to this device. The last thing I need to enable is the passing of fragmented packets.
In the interface, I go to Firewall -} Attack Defense.
Under "Packet Anomaly Defense", no matter what set of features I choose anywhere else in the router (I have tried disabling literally every advanced feature) the "Block Fragment Traffic" option is checked AND grayed out so I cannot uncheck it.
How do I turn off this "feature" so it stops interfering with what I need my network to do?