Completely open, but traffic gets blocked by "Default deny rule"
-
Completely open, but traffic gets blocked by "Default deny rule"
My setup:
2 nics + winxp + vmware pfsense apliance default setup
WAN rule - pass any-to-any
LAN rule - pass any-to-any
IPSEC rule - pass any-to-anyIPSEC enabled
IPSEC mobile client enabled and configured
IPSEC client successfully connectedProblem:
ping/telnet/etc from WAN-to-LAN all get blocked.firewall log:
The rule that triggered this action is:
@48 block drop in log quick all label "Default deny rule"Please help.
Thanks,
KW -
Screenshot of your rules please.
-
Rules:
-
-
Update:
Not sure what happened - but seems now IPSec rules was reapplied again - stopped getting the errors in firewall log.
But still no traffic going through from WAN-to-LAN
Please advise. -
Traffic coming in the WAN going to LAN will not get anywhere without port forwards or other NAT rules, unless you have completely disabled NAT.
-
I tried a few combos:
Automatic outbound NAT rule generation (IPsec passthrough)
NAT disabled (manual + no rules)
1:1 NAT with VIPNothing seems to work.
Please help. -
What exactly are you trying to accomplish? How are your WAN and LAN configured?
-
Here is a path that I am trying to traverse:
[client + ipsec mobile 192.168.111.62]
–-physical network segment A ---
[pfsense WAN interface 192.168.111.105]
[pfsense LAN interface 192.168.1.1]
–-physical network segment B ---
[server 192.168.1.245]
From server I can see client.
From client I want to see server, but I cant.Thanks for your help!
-
Update:
SOLVED!
Stupid mistake! - it was working all along - just on the server soft-firewall was in the way.