States not cleared when WAN down

bartwiggers · Jul 20, 2013, 6:20 PM

If I understand it right, by default PFsense 2.1 will clear the states when the WAN interface is down.

In my case this does not happen or did I forget to make a setting right ?

Bart (NL)

wallabybob · Jul 20, 2013, 9:22 PM

What evidence lead you to conclude
@bartwiggers:

In my case this does not happen

@bartwiggers:

did I forget to make a setting right ?

I presume you mean: System -> Advanced, Miscellaneous tab, Gateway Monitoring section. parameter States.
I read the description to mean: a tick in the box overrides the default behaviour of clearing states when the WAN link goes down.

bartwiggers · Jul 20, 2013, 10:18 PM

Hi Wallabybob,

I simply disconnected the wan connector for a few minutes
and discovered that the states we not cleared.

I did not tick the box that you discribed in your comment.

Bart (NL)

wallabybob · Jul 20, 2013, 10:43 PM

@bartwiggers:

I simply disconnected the wan connector for a few minutes

Thanks, that's useful information.

@bartwiggers:

and discovered that the states were not cleared.

OK, but what did you see that caused to conclude states were not cleared? Perhaps pftop reported 10 active states or Diagnostics -> States reported 12 active states or a partially complete FTP transfer didn't report the connection broken or …

I don't know your configuration but a few minutes would be long enough for (say) a system on your LAN to attempt to create connections to a system on your OPTx interface and create states.