Hi everyone,
By default, the conduit allows access to its cellular WAN to everything on the Ethernet LAN. This was starting to get expensive when one of our developers accidentally downloaded a large toolset from the internet thinking they were on their wireless, but instead went through the conduit.
To try and solve the issue, we added a firewall rule on the conduit to block INSIDE ANY to OUTSIDE ANY (though limited the target adapter to cellular).
After (several) restarts, we can no longer communicate with conduit via SSH, web console, etc. The device still offers DHCP services to the Ethernet connected laptop, as well as responds to icmp from the Ethernet lan, but we can not connect to it from the Ethernet lan.
It also seems to have stopped transmitting its outgoing data generated internally from its node-red workflows (assuming they are still running…).
To me it almost seems like the firewall rule has included the conduit itself in its policies. So the LAN is no longer allowed to talk to the conduit (treating the conduit as if it was inside the WAN), and the conduit is not allowed to talk to the WAN (in this case treating the conduit as if it was inside the LAN).
Is it possible that this could be happening?
If so, I’d really appreciate any ideas on how this could be rescued 🙂
Thanks all!
Chris