I've just installed a new FWG. I was troubleshooting a problem with poor Internet performance and I found what appears to be an issue with the nmap process that is enabled when the "Device Port Scan" feature is enabled.
First, I did 100 pings ssh'd into the FWG and 100 pings from a computer on the internal network. The pings from the FWG itself were fine. I had packet loss and high latency & jitter (~500ms) on the pings THROUGH the FWG.
Poking around in the logs, I saw the following error message repeated:
2022-07-03 23:04:19 ERROR NmapSensor: Failed to scan: Error: RTTVAR has grown to over 2.3 seconds, decreasing to 2.0
RTTVAR has grown to over 2.3 seconds, decreasing to 2.0
at ChildProcess.exithandler (child_process.js:286:7)
at ChildProcess.emit (events.js:210:5)
at maybeClose (internal/child_process.js:1021:16)
at Process.ChildProcess._handle.onexit (internal/child_process.js:283:5)
Turning off the "Device Port Scan" immediately resolved the issue. However, this error message seems to repeat when I click on the "Open Ports" option in the mobile GUI.
I also see another message repeating in the logs.
ERROR BroDetect: HeartBeat: Unable to find nif uuid, undefined, 33:33:00:00:00:0c
Box version 1.9740
App version 1.50
Please sign in to leave a comment.