Default LAN -> any

ht

Just got a new install of pfsense going but having some problems with the default LAN not triggering and passing all traffic out. I've been bashing my head on the keyboard for a couple days but can't figure out what's going on. Hoping someone can spot my error?

The only rule that exists for LAN(em4) is (output is from 'pfctl -vvs rules'):
@92 pass in quick on em4 inet from 10.30.0.0/16 to any flags S/SA keep state label "USER_RULE: Default LAN -> any"

I'm seeing outbound traffic on LAN/em4 blocked on http/80 and imaps/993 on some addresses but not all with no real pattern emerging.

Some examples of traffic not being passed out:
Jul 27 11:13:30 nyx pf: 500075 rule 100/0(match): block in on em4: (tos 0x0, ttl 64, id 20907, offset 0, flags [none], proto TCP (6), length 89) 10.30.4.110.53204 > xxx.85.199.109.993: FP, cksum 0xa8f1 (correct), 0:37(37) ack 1 win 65535 <nop,nop,timestamp 187908887="" 1422336178="">Jul 27 11:13:08 nyx pf: 000012 rule 100/0(match): block in on em4: (tos 0x0, ttl 64, id 57286, offset 0, flags [DF], proto TCP (6), length 40) 10.30.1.64.49241 > xxx.234.169.32.80: R, cksum 0x1c8b (correct), 395:395(0) ack 1 win 65535

Jul 27 11:15:38 nyx pf: 500188 rule 100/0(match): block in on em4: (tos 0x0, ttl 64, id 61015, offset 0, flags [none], proto TCP (6), length 89) 10.30.4.110.53204 > xxx.142.4.199.993: FP, cksum 0xa7f1 (correct), 0:37(37) ack 1 win 65535 <nop,nop,timestamp 187909143="" 1422336178="">Rule 100: @100 block drop in log quick all label "Default deny rule"

Ideas?</nop,nop,timestamp></nop,nop,timestamp>

AhnHEL

This should help explain

http://forum.pfsense.org/index.php/topic,5144.0.html