Is it reasonably safe to uncheck autoblock source of packets not handled?
Posted on 2008-10-02
Trying to troubleshoot some performance issues with a certain website that we subscribe to, I installed pingplotter at the suggestion of the vendor. Pinging/trace routing the site caused it to be blocked by our Firebox, due to the "autoblock source of packets not handled" option. Watchguard suggested that we uncheck autoblock source of packets not handled and that it would be ok to do so.
What are the thoughts out there about this? I'm guessing it is probably OK to do so while I'm testing, but what about leaving it that way? Am I inadvertently blocking other legitimate sites? (I know, I should check the logs to answer that question).
There isn't really a solution to the Q - but I'd like to have some info to make an informed decision.
thanks for any input.