@Abdrouf4995 said in Unable to RDP (PFSense): this is because in most cases the don't have any knowledge about networking. That's never stopped a manager from giving his opinions before I have personally argued several times with someone who never learns that intra-LAN traffic doesn't hit the firewall. He doesn't know what a gateway is for, and yet he argues with me as if he had a clue. He is the poster boy for Dunning-Kruger Effect: "Incompetent people, the researchers found, are not only poor performers, they are also unable to accurately assess and recognize the quality of their own work. These low performers were also unable to recognize the skill and competence levels of other people, which is part of the reason why they consistently view themselves as better, more capable, and more knowledgeable than others."

In case anyone has the same issue, i circunvented it by setting [Manage Firewall Log] -> [Where to show rule descriptions] to "Display as column". There, the rule descriptions do show correctly, as can be seen in the following screen capture: [image: 1559742805199-pfsense4.png] The column with the "person icon" is the rule description column. I clicked in the green check mark to confirm that the rule didn't show the description in the popup. regards

You understand that mac address are only at L2 right.. There is no way you could filter on a devices mac address from the internet.. The only mac address pfsense would see from the internet is the routers interface in front of it, ie the isp device. The way do what you ask is vpn.. I have never experience any heavy battery load from running vpn...

@tomaszf said in Traffic is blocked despite adding an exception: Floating rules is solution :) No prob not!! Did you read the article linked article.. That screams asymmetrical traffic... Looks like 192.168.226.2 started a conversation to 10.10.2.2 (http) and 10.10.2.2 answered (syn,ack) via sending to pfsense, but pfsense never saw the syn from 192.168 to open the state.. The correct fix is to fix your asymmetrical issue, not allow non stateful traffic through. If you draw up your network we can help you figure out why asymmetrical

Hello, Thanks for your help, I have removed them == RFC 1918 == after uploaded this image. Overall I had found solution on my issue. Under my interfaces -> Opt1 configuration. I has changed under Static IPv4 Configuration ip xx.xxx.x.x / 32 to 24. Then it works perfect.

Sorted thanks; must just have been an odd glitch

@NogBadTheBad Big Thanks ... In past, when I was creating igb0 interface, internet was also disconnecting ... but now, I don't have any idea how it became correct.

I just tried another method, the "layer 2 approach" as I'm naming the artboards in my I-didn't-have-the-patience-for-Visio app: [image: 1559165064405-l2-approach-resized.png] I figured: if I cut the middle man it should work without issues. It didn't turn out as planned: [image: 1559164096016-screen-shot-2019-05-29-at-2.27.08-pm-resized.png] The capture above is taken from the internal (tunnel) interface of the remote firewall. It's still blocked. Now I'm really confused as to what's going on. The only thing I can think of is adding it as a second gateway in the DHCP server but I'm not holding my breath...and won't work for devices not using DHCP. :( The remote firewall's public IP address is in a subnet (i.e; a single address of a /23) contrary to the local which is a /32 PPPoE address, I'm thinking about some sort of static routes hack to that but then how would it be reached to bring up the tunnel in the first place. I need to finish my TCP/IP-something-something-drawings book ASAP. At this rate I'm going to end up becoming a graphic designer with a broken network.

@Derelict Thanks! I will set a lab to try that out, I had no idea about that location. I don't have such a rule right now, I was just curious. I did come across some routing problems in the last few days, that's what it took me so long to come back. Thanks!

I don't fully understand what you wrote, but if you want to get rid of the logs, just edit the rule, and uncheck the option to generate logs.

Hi Everyone again, I installed successfully pfSense on VMWare, now help me to block all torrents port and other P2P for all my VMs, thanks a lot

@pfsense2017 said in https en http toegang dns: the other 3 dns servers are not functional Why would you need to use them ? What about removing them ? Btw : pfSense, by default, resolves just fine. If you didn't change anything, it would work.

There was some work done with matching NAT states. Best thing to do is upgrade to 2.4.4-p3 and see if it fixes your specific problem.

48,,,1558475967,lagg0.4091,match,block,in,4,0x0,,128,17847,0,DF,6,tcp,164,10.8.2.120,172.28.0.10,60354,445,124,PA,4089409933:4089410057,342856039,254,, 1558475967 is the Block all-Lan rule in the above screen shot. TCP:PA Your pass rule will pass TCP:S(YN) and associated in-state traffic. Your block rule will block out-of-state, asymmetric, etc traffic. https://docs.netgate.com/pfsense/en/latest/firewall/troubleshooting-blocked-log-entries-for-legitimate-connection-packets.html#troubleshooting-blocked-log-entries-for-legitimate-connection-packets

I'm currently trying out pfblockerng now, just want ask for assistance, where or how can I block a certain website in pfblockerng? Example: Facebook or lets say social media sites in general? Thanks! ast

Not sure what is in your aliases - but yeah that is how you would do it.

it keeps also happening to a XG7100 device with 3x pppoe lines

Using a specific rule with an appropriate description is the only viable way. Doing a reverse lookup on the address to find it in aliases/tables may be possible but it doesn't scale well. Especially when you get into situations like pfBlocker where there may be hundreds of thousands of table entries.