TFTP协议报文过防火墙不通,放全通策略或者放通双向策略后才能通。
debugging查看,发现首包正常放通,但是回包被丢弃。
*Sep 10 02:14:09 2022 HF-CORE-FW-ADMIN FILTER/7/PACKET: -COntext=12-Slot=2; The packet is permitted. Src-ZOne=Untrust, Dst-ZOne=Trust;If-In=Route-Aggregation10.1002(158), If-Out=Route-Aggregation10.1012(159); Packet Info:Src-IP=1.1.1.1, Dst-IP=1.1.1.2, VPN-Instance=,Src-Port=38614, Dst-Port=69, Protocol=UDP(17), Application=tftp(27), ObjectPolicy=Untrust->Trust, Rule-ID=31101.
*Sep 10 02:14:09 2022 HF-CORE-FW-ADMIN FILTER/7/PACKET: -COntext=12; The packet is denied. Src-ZOne=Trust, Dst-ZOne=Untrust;If-In=Rout