Unifi firewall rules not working. Thus, it goes to the next rule and gets r...

Unifi firewall rules not working. Thus, it goes to the next rule and gets rejected. Existing policies (created before this provider version) work on read/update because UseStateForUnknown () preserves the server-assigned index. Sorry the post is so lengthy I just wanted to include some detail to anybody that might understand my problem. Mar 18, 2021 · [ Greetings! ] I am new to working within the Cisco environment, and though I like to believe I understand the theory of firewalls and ports, I am having trouble putting theory into practice. What you’re seeing in the screenshot is a Threat Management (IDS/IPS) alert (e. Once enabled I cannot ping or SSH from the default network. It is important to be aware of this index because incorrect placement may create the perception of a rule "not working". By understanding these factors and applying the recommended troubleshooting steps, users can regain control over their firewall settings. Sadly, ZBF policies are not always properly executed. I tried dozens of different things to see whether it was working, and I couldn’t figure it out at all. If not, ensure TCP: 8080 and UDP: 10001 is open between on all gateways, firewalls, and antivirus software, between the UniFi Host and the UniFi Devices. If you have multiple LANs, then you’d have to duplicate the rules or apply them to the OUT port as you have done. Jan 27, 2025 · The inability to edit firewall rules within the Unifi ecosystem can stem from various reasons, ranging from user permissions to software bugs. At the moment I am attempting to get a UniFi set-up on one VLAN to communicate with a UniFi controller on an Mar 8, 2026 · I do have some firewall rules in place to not allow inter vlan connections. . , “ET DROP Spamhaus …”), which is produced by UniFi’s IDS/IPS engine, not by firewall logging. Mar 25, 2026 · This blocks creating any new unifi_firewall_policy resources. ZBF policies in the same zone don’t work because networks in the same zone already have access to each other. g. Apr 27, 2023 · There isn’t any traffic that rule sees with your internal IPs. When creating a new rule, you can choose to apply it before or after the predefined rules. Normally, you’d apply rules on the LAN port in the IN direction. Feb 20, 2026 · It does not modify rule actions, zones, ports, or enable/disable rules. If the device is on a different VLAN or subnet than your UniFi Network application: Ensure routing and firewall rules allow TCP port 8080 between the device and UniFi Network. Apr 27, 2025 · Other than creating a Block rule for each network, is there a setting that can be enabled on the controller that designates a single interface as the management plane? Nov 30, 2025 · The final straw was when something that I had done hundreds of times before, adding a firewall rule for port forwarding, just wouldn’t take. I am struggling to understand why this firewall rule is not working as I expect it to on a UDM Dream Machine. Oct 12, 2025 · The Unifi Zone Based Firewall (ZBF) is a very powerful, but simplified mechanism for managing firewall rules on Unifi Gateways. lndqgp rjkxy eyyzho azmtsp eba