Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Disable Firewalling for packets entering and leaving the same interface w/ CARP

    Scheduled Pinned Locked Moved Firewalling
    2 Posts 2 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F Offline
      fstern
      last edited by

      Hi all,

      I have some problems with PFSense 1.2-Release.

      I have a pair of firewalls configured with CARP (which is working nicely).

      Now I have another router "inside" which connects via MPLS to a customer branch office.

      When I try to open a connection from the branch, pfsense sees only half of the connection and begins to drop it after a few minutes.

      I have already enabled "Static Route Filtering" so that firewall rules should be bypassed on the same interface. This is enabled on both firewalls.

      I still see pf states for those "half" connections. Is there any magic I could turn on (except routes on the servers themselves?)

      Kind regards,

      Falk

      1 Reply Last reply Reply Quote 0
      • E Offline
        eri--
        last edited by

        Create rules for the networks on pf to use the no state advanced option so pf doesn't try to nomalize the connection.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.