Various sites and services being blocked - how to fix?

A Former User

@elmojo, Apply this setting just as the image shows.

A Former User

@elmojo, Switches from (Lan Net) To (*) In both rules

Elmojo

@silence
Okay, both done, no improvement.
I have now lost access to the Amazon app again on my phone, likely due to the DNS change.
I still cannot access the FireTV home screen, or Netflix. I can, oddly, access Amazon Prime Video on my TV. I'm not sure if that was working before or not, I never tried.

A Former User

@elmojo, try to enter again and then go to firewall logs and send me a screenshot ...

It must be quick. I want to see what blocks this.

A Former User

@elmojo
what is the ip of your the FireTV?

Elmojo

@silence said in Various sites and services being blocked - how to fix?:

@elmojo, try to enter again and then go to firewall logs and send me a screenshot ...

It must be quick. I want to see what blocks this.

This is the log about 30secs after I clicked "try again" on the FireTV.

@silence said in Various sites and services being blocked - how to fix?:

@elmojo
what is the ip of your the FireTV?

I'm just guessing, since it won't tell me anywhere in the FireTV GUI, but I think it's 192.168.11.106. This is based on the hostnames on the DHCP lease page.
In any case, the firewall is only logging WAN traffic being blocked, since we have it set to allow everything on the LAN, so that internal IP isn't going to show up regardless.

A Former User

@elmojo well delete all the lan rule and create a new one allow all to all and enable logs in these rules.

A Former User

@silence Example:

Elmojo

@silence Done.
Well, that certainly changes the look of the logs...
Here it is just after the new rule was in place, and I clicked the "try again" button on the FireTV...again. :)
I see some activity on 11.106, but it appears to pass. Maybe the "return traffic" was one of those that got blocked? It's hard to say, since I seem to have LOTS of incoming WAN 'attacks' (for lack of a better term) all the time. Is that normal? Seems like a lot.

A Former User

@elmojo, Test port Source Address = LAN

A Former User

@silence How is the gateway? Latency

Elmojo

@silence Test passed, no problem.
Gateway: RTT-21.859ms RTTsd-0.321ms Loss-0.0% Status-Online

A Former User

@elmojo System> General Setup = DNS Server Override

It is marked ?

Elmojo

@silence
No, not marked. I set it up the way you showed earlier.
What are you showing in that screenshot? That IP is my desktop.
That destination server is adguard DNS. It's only used on my desktop, for blocking ads.
It's very good, by the way. :)
Uugh...I'm a new user, so I have to wait 2 minutes to reply.... lol

A Former User

@elmojo, Restart Your FireTV And Then Try Browsing Again. Firewall Logs And Screenshot

Elmojo

@silence I'm sorry, I don't understand the question.

A Former User

@elmojo and about "Attack on the wan" it is possible that someone inside your lan uses certain malicious apps or tools unknowingly.

this is not a cause for concern as long as you keep it monitored.

Elmojo

@silence
It's just me inside my LAN. :)
Wouldn't that generate outgoing traffic, not incoming?

Elmojo

@silence said in Various sites and services being blocked - how to fix?:

@elmojo, Restart Your FireTV And Then Try Browsing Again. Firewall Logs And Screenshot

I just did that a few minutes ago, but let's try it again. One moment...
Okay, here's the screenshot of when the FireTV is just rebooting.
I see it (11.106) connect to 52.94.233.94, which comes up as Amazon on a whois search.
However, it shows as "passed", so I can't figure why it can't connect.
The FireTV itself reports good connection to both network and internet, and some apps that require internet within the FireTV space work fine, such as Amazon Prime Video, which is really weird.

A Former User

@elmojo, At this point everything should work fine, can you send a photo that shows your firetv exactly?