USG2160 version is V100R005C00SPC300, the packet filtering does not come into effect when using the transparent mode.
1. Check the customer’s packet filtering configuration
2. Shut down fast forwarding, perform command:
undo l2fwdfast enable
Can resume the packet filtering
USG2100 series of firewall works in pure second mode when opened fast forwarding, the data will not be sent to CPU to process, so at this moment the packet filtering of transparent firewall is not effect.
Analysis the reasons:
1. The packet filtering configured error
2. Fast forwarding is not closed
After shut down the fast forwarding, due to data packet need be judged and processed by CPU, certainly will reduce the performance of the equipment