Support Center > Search Results > SecureKnowledge Details
X11 traffic is dropped with "Violated unidirectional connection" log when passing through a VPN tunnel Technical Level
Symptoms
  • X11 server (X Window System) return traffic on UDP ports 6000-6063 is dropped with "Violated unidirectional connection" log when passing through a VPN tunnel.

  • Kernel debug ('fw ctl debug -m fw + conn drop vm') shows:

    [-- Stateful VM inbound: Entering (...) --]; 
    ;Before VM: < Source_IP:X11_Port - > Dest_IP:Dest_Port IPP 17 > (len=...) (ifn=N) (first seen) (looked up) ; 
    ;fw_one_way_enforcement: conn oneway violated. vanishing; 
    ;fw_log_drop: Packet proto=17 Source_IP:X11_Port - > Dest_IP:Dest_Port dropped by fw_one_way_enforcement Reason: conn oneway violated; 
    ;fw_conn_inspect: one way violation (action=VANISH); 
    ;fw_filter_chain: fw_conn_inspect returned action VANISH; 
    ;fw_filter_chain: Final switch, action=VANISH; 
    ;After VM: < Source_IP:X11_Port - > Dest_IP:Dest_Port IPP 17 > (len=...) ; 
    ;VM Final action=VANISH; 
    ; ----- Stateful VM inbound Completed ----- 
    
Solution
Note: To view this solution you need to Sign In .