Do UPnP rules not expire?

Witchboard

I just enabled UPnP on my pfSense and fired up the PS5. PS5 reported NAT2 rather than NAT3 like it used to. Everything seemed to work fine with NAT3, but thought I may see some improvement, but I digress.

Checked the UPnP status and see two rules for the PS5. I was under the impression these expired which is what makes them more secure than just making port forwarding rules. I haven't had my PS5 on since yesterday and the rules are still there. I couldn't find anything in the documentation on if there was a setting to change the time or what the default time may be.

"Manual port forwards to accommodate these scenarios tend to be overly permissive, potentially exposing services that should not be open from the Internet. The port forwards are also always on, where UPnP may be temporary."

https://docs.netgate.com/pfsense/en/latest/services/upnp.html

tomashlabel

This post is deleted!

stephenw10

See: https://redmine.pfsense.org/issues/15470

Witchboard

@stephenw10 Thank you. So looks like it will be resolved in 2.8.0. I appreciate it.

JonathanLee

When we use the Xbox they disappear after it’s done with the games. The states don’t close?