Firewall Lanecy traffic issue
-
Has anyone seen or heard of a Pfsense firewall showing a stream of traffic up and down on wan2(2mb+) without having any traffic showing up on the lan. So a possible proxy server on a pfsense box?
Thanks
Eric -
what is the traffic? running tcpdump should show that. if it was a proxy server, it should not be doing anything unless a LAN client is requesting it.
-
How would I run tcpdump? Thanks
-
When the connection should be idle, ssh in to the pfsense, and do 'tcpdump -i xxx', where 'xxx' is the WAN interface.
-
The traffic is constant packets from three ips 204.0.5.19 & 33 then 221.195.82.103. Is there anyway with pfsence to drop these from causing router traffic and processor interrupts?
-
Your OP said "going up and down". What is the pfsense sending back? Unless you are running some kind of open service they can access, they should not be using anything like 2mb/sec.