Watchguard Freezing

Posted on 2009-04-09
Medium Priority
Last Modified: 2013-11-16
We have a Watchguard Firebox X20e running firmware 10.2.7.  Behind that we have an Exchange server 2003.  There are about 10 computers in our office at any one time.  Most every day, Exchange mail stops and the only way to fix is to reboot the firewall.  Watching the log viewer on the firewall we see "deny out eth1 78 udp 20 128 137 137 (broadcast)" occurring multiple times per second.  This IP making the oubound request comes only from Vista computers.  This seems to be a network discovery service running, so our questions are

1. Why do vista machines pound the firewall with network discovery requests - Maybe 150 requests a minute/per computer?
2. Is that enough traffic over time to freeze up a firewall?
3. Any other ideas?
Question by:initialit
LVL 13

Accepted Solution

zvitam earned 1000 total points
ID: 24113992
I suggest you try to turn off (fully or partially) network discovery on the Vista machines, and see if it makes any difference.

reading the following article might also help you:


LVL 32

Assisted Solution

dpk_wal earned 1000 total points
ID: 24154514
Do you see any logs in WG when the box freezes. On X20e there is a limit of available NAT ports (8000 concurrent outbound sessions) which are consumed whenever any internal machine tried to access the internet. There is a possibility that the rogue machine sends so much traffic that all ports are consumed and rebooting frees the ports and brings the network back to normal.

As alerady suggested disable network discovery or if possible, remove the machine from the local network and observe if you still see the device freezing up.

Please update.

Thank you.

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Some of the most commonly posted questions in the "Virus & Malware" Zones are related to the family of rogue malware with the date "2012" somewhere in the title. Examples: XP Antispyware 2012 XP Antivirus 2012 XP Security 2012   XP Home Sec…
There are many reasons malware will stay around and continue to grow as a business.  The biggest reason is the expanding customer base.  More than 40% of people who are infected with ransomware, pay the ransom.  That makes ransomware a multi-million…
The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…

624 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question