M
Mark Sztainbok
I have a Linux VM which is using a Internal network to connect to the host with NAT enabled. The host IP address is 192.168.215.1 and the Linux VM has an IP address of 192.168.215.2.
I have the following firewall rule which allows access from the Hyper-V subnet to the host:
However when I try to access the host from the VM, the packets are being dropped:
I've looked at the WFP filters and it's being dropped by this filter even though there is a filter above it which represents the rule:
<item>
<filterKey>{97969ea2-81ed-486d-94fd-1e7aa27a8e70}</filterKey>
<displayData>
<name>Query User</name>
<description>Prompt the User for a decision corresponding this Inbound Traffic</description>
</displayData>
<flags/>
<providerKey>{decc16ca-3f33-4346-be1e-8fb4ae0f3d62}</providerKey>
<providerData>
<data>ab43000000000000</data>
<asString>.C......</asString>
</providerData>
<layerKey>FWPM_LAYER_ALE_AUTH_RECV_ACCEPT_V4</layerKey>
<subLayerKey>{b3cdd441-af90-41ba-a745-7c6008ff2301}</subLayerKey>
<weight>
<type>FWP_UINT8</type>
<uint8>8</uint8>
</weight>
<filterCondition numItems="1">
<item>
<fieldKey>FWPM_CONDITION_ORIGINAL_PROFILE_ID</fieldKey>
<matchType>FWP_MATCH_EQUAL</matchType>
<conditionValue>
<type>FWP_UINT32</type>
<uint32>1</uint32>
</conditionValue>
</item>
</filterCondition>
<action>
<type>FWP_ACTION_BLOCK</type>
<filterType/>
</action>
<rawContext>0</rawContext>
<reserved/>
<filterId>142780</filterId>
<effectiveWeight>
<type>FWP_UINT64</type>
<uint64>9223372036854791168</uint64>
</effectiveWeight>
</item>
The odd thing is that I can access 192.168.50.81 (which is the IP address of the Ethernet connection of the host) but not the actual IP address of the virtual network adapter (i.e. 192.168.215.1).
Any thoughts about what is blocking the access to the host IP address in the virtual network and how to fix it?
Continue reading...
I have the following firewall rule which allows access from the Hyper-V subnet to the host:
However when I try to access the host from the VM, the packets are being dropped:
I've looked at the WFP filters and it's being dropped by this filter even though there is a filter above it which represents the rule:
<item>
<filterKey>{97969ea2-81ed-486d-94fd-1e7aa27a8e70}</filterKey>
<displayData>
<name>Query User</name>
<description>Prompt the User for a decision corresponding this Inbound Traffic</description>
</displayData>
<flags/>
<providerKey>{decc16ca-3f33-4346-be1e-8fb4ae0f3d62}</providerKey>
<providerData>
<data>ab43000000000000</data>
<asString>.C......</asString>
</providerData>
<layerKey>FWPM_LAYER_ALE_AUTH_RECV_ACCEPT_V4</layerKey>
<subLayerKey>{b3cdd441-af90-41ba-a745-7c6008ff2301}</subLayerKey>
<weight>
<type>FWP_UINT8</type>
<uint8>8</uint8>
</weight>
<filterCondition numItems="1">
<item>
<fieldKey>FWPM_CONDITION_ORIGINAL_PROFILE_ID</fieldKey>
<matchType>FWP_MATCH_EQUAL</matchType>
<conditionValue>
<type>FWP_UINT32</type>
<uint32>1</uint32>
</conditionValue>
</item>
</filterCondition>
<action>
<type>FWP_ACTION_BLOCK</type>
<filterType/>
</action>
<rawContext>0</rawContext>
<reserved/>
<filterId>142780</filterId>
<effectiveWeight>
<type>FWP_UINT64</type>
<uint64>9223372036854791168</uint64>
</effectiveWeight>
</item>
The odd thing is that I can access 192.168.50.81 (which is the IP address of the Ethernet connection of the host) but not the actual IP address of the virtual network adapter (i.e. 192.168.215.1).
Any thoughts about what is blocking the access to the host IP address in the virtual network and how to fix it?
Continue reading...