Weird firewall issues
-
I've setup a site to site vpn. For the most part it works okay, except I randomly find myself unable to ping certain hosts. When I look at the firewall log it shows that some of the packets are being blocked.
@218 block drop in log quick on fxp0 inet from 10.0.0.0/8 to any label "block private networks from wan block 10/8"
I understand that this is the default wan block rule pertaining to local networks, but these packets should be coming over tun0 should they not? I know i could probably fix this issue by disabling this feature, but I'd really rather not if it could be avoided.
Any insight would be appreciated. Thanks!