After upgrading to 25.07 (6100) Strange empty firewall rules blocking UDP / no port
-
Hi,
after upgrading my 6100 boxes to 25.07 i get strange log entries in the firewall log
The IPs are the public IPs of the WAN Interfaces (91.x.x.x of Box 1 and 109.x.x.x of Box 2).
They have an established IPsec tunnel using the IP addresses above.I have the same with the public IPs on pfSense Box 1 with an IPsec tunnel to a non pfSense 3rd device.
Did I miss something in the release notes explaining this new behaviour?
Especially why there is nog rule# and no UDP-port? -
@conover Also saw that and it seems related to IPsec indeed.
-
@Bob.Dig said in After upgrading to 25.07 (6100) Strange empty firewall rules blocking UDP / no port:
@conover Also saw that and it seems related to IPsec indeed.
Thanks for the confirmation.
Dose anybody know how to disable the logging of those? I have hundreds of them a day in my log files....
-
@conover Probably the same way you do it for "the new" IGMP logs, you create a block rule if this should be blocked, it is blocked right now, and make it no-log.
-
@Bob.Dig said in After upgrading to 25.07 (6100) Strange empty firewall rules blocking UDP / no port:
@conover Probably the same way you do it for "the new" IGMP logs, you create a block rule if this should be blocked, it is blocked right now, and make it no-log.
Good point - thanks (wasnt aware of the new "IGMP rules").
But the log for the blocked rules do not say for which UDP port(s) the blocking is.
