LAN packets getting blocked by default but any is allowed
-
I have pfSense running in a transparent bridge.
On the LAN side I have any any allowed although traffic within the LAN side is getting blocked.TCP:R for port 135 on the LAN side..
pfctl -d (no problems)…
pfctl -sr
pass in quick on fxp0 from <mp_subnet> to <mp_subnet> flags S/SA keep state label "USER_RULE" pass in quick on fxp0 all flags S/SA keep state label "USER_RULE: Default LAN -> any" pass in quick on fxp0 inet proto tcp from any to 127.0.0.1 port = ftp-proxy flags S/SA keep state label "FTP PROXY: Allow traffic to localhost" pass in quick on fxp0 inet proto tcp from any to 127.0.0.1 port = ftp flags S/SA keep state label "FTP PROXY: Allow traffic to localhost" anchor "imspector" all anchor "miniupnpd" all block drop in log quick all label "Default deny rule" block drop out log quick all label "Default deny rule"</mp_subnet></mp_subnet>
ANy idea what I am missing with this?
-
Screen shot of the dropped packets on LAN side.
I have to snip IP addresses but they are with in the same subnet, all local.
-
-
reflection has no relation.
http://doc.pfsense.org/index.php/Logs_show_%22blocked%22_for_traffic_from_a_legitimate_connection,_why%3F