I am a 1G Fiber customer in Berkeley with a Smart/RG SR516ac WiFi/Router provided by Sonic. On the router there is no port triggering or virtual servers. An Ubuntu server is the only thing connected to the router, and it provides packet forwarding connectivity to everything else in the house on a separate interface card and subnet.
At the server, I am seeing lots of inbound UDP packets arriving from the WAN and being blocked by the server firewall. Here is an example:
ufw.log:Sep 4 00:24:14 kiwi kernel: [1432477.824804] [UFW BLOCK] IN=enp7s0 OUT= MAC=**************** SRC=157.240.22.19 DST=192.168.42.3 LEN=61 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=UDP SPT=443 DPT=64552 LEN=41
enp7s0 is the network card that connects the server to the router and 192.168.42.3 is the server's IP LAN address obtained via DHCP from the router.
My question is why are these packets getting through the router? My understanding is that all incoming IP traffic should be blocked.
Thanks in advance.
At the server, I am seeing lots of inbound UDP packets arriving from the WAN and being blocked by the server firewall. Here is an example:
ufw.log:Sep 4 00:24:14 kiwi kernel: [1432477.824804] [UFW BLOCK] IN=enp7s0 OUT= MAC=**************** SRC=157.240.22.19 DST=192.168.42.3 LEN=61 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=UDP SPT=443 DPT=64552 LEN=41
enp7s0 is the network card that connects the server to the router and 192.168.42.3 is the server's IP LAN address obtained via DHCP from the router.
My question is why are these packets getting through the router? My understanding is that all incoming IP traffic should be blocked.
Thanks in advance.