Various sites and services being blocked - how to fix?
-
There was a link to the Netgate docs in the post I referenced that had some good troubleshooting info, but that link appears to be broken.
Here is the current link :
https://docs.netgate.com/pfsense/en/latest/troubleshooting/log-filter-blocked.html
It may help you explore the state issues.
John
-
@serbus Yeah, I read that page previously.
I'm pretty sure my issue is asymmetric routing, but I haven't found anything yet that explains it in a way I can understand, or says how to actually fix it. The link on that troubleshooting page says there's an "automatic fix", which I've tried, without success. I don't have any static routes in place, so that option doesn't seem to apply anyway. Perhaps adding static routes is the answer, but I don't know what that is or how to invoke it.I'm really hoping someone can help me track this down.
I'm so close to a working network here, but as it stands at the moment, I still can't access certain critical things I need, some of which (eg. my copier GUI) are within my LAN. -
Your Desktop PC CADZilla uses a cable connection. Has it also Wifi ? And if so : de activate it.
-
@gertjan No, it's wired connection only.
-
@elmojo, Merry Christmas, sorry not to be able to enter earlier, I agree that I am going to send your contact information to verify your pfsense, is everything ready? or even need help.
-
@silence Good morning! I think you are offering remote help, right?
What sort of access to my network would you have? I don't mean to sound untrusting, but because of the work I do, I'm not allowed to give any outside person or entity access to any of my systems or internal network. I can allow access to the pfsense system, if that's what you are suggesting. How would we do it? What sort of connection or software?
I would really appreciate any help! -
@elmojo, anydesk.
-
@silence Sorry, that would give you access to my desktop and network. I can't allow that. :(
Thanks so much for the offer, though. I'm so close to getting this sorted out! -
@elmojo, If you want you can allow access only in pfsense (creating a rule in your wan like this for example) Firewall> rules> Wan> Permit 190.166.216.65
-
@silence What would that "permit"? Is that 190.166 address your public IP, or just an example?
I'm sorry, I don't follow what that rule would do. I'm game to try it if it gives you access to only the pfsense box, but I don't see how it would work. Sorry, it's Monday and I'm slow. Besides, I'm learning all this from scratch. Please be patient with me.
-
@elmojo, yes my WAN IP PUBLIC !
Only Acess Remote to you pfsense (website)
I would need you to create a user just to monitor your firewall logs.
-
@silence Ok, cool. Let's give it a shot. One minute, let me set up the rule.
-
@elmojo, take a screenshot of the new username and password for me but don't send me the link.
-
@silence sorry for the delay, was on the phone with my office.
I have no idea if I did the user right. Let me know. -
@elmojo, Now Need View Firewall Logs
-
@silence
How do I assigned you to the page?
I don't see any options in the user management... -
This post is deleted! -
@silence Done, try now.
-
This post is deleted! -
@silence Done. Is it working now?
I'm okay with you having dashboard access temporarily.
I just can't give you full network access. I trust that you won't jack up my configuration too badly and lock me out or anything. :)
