Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    2.4.4 Change firewall rule

    Scheduled Pinned Locked Moved NAT
    5 Posts 3 Posters 501 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      Jacopx
      last edited by

      I’m using pfSense since years, yesterday I have update the system and the problem are coming out really fast, I’m running a website on 443 port and now is not more reachable because NAT firewalled my packages. How can I solve this problem?

      Great Wall (pfSense 2.4.3)
      Asrock H110M-ITX || Intel® Pentium G4400T || Crucial 4GB DDR4 || HP NC360T || CoolerMaster Elite 110
      Bunker (FreeNAS 11.1-U4)
      Supermicro X9SRA || Intel® Xeon® E5-2670 SR0KX 2.60Ghz  || Kingstone _DDR3**-**_16GB ECC || Antec One

      WAN: Vodafone FTTH (D:934mbps - U:195mbps) ~ Ping: 7ms

      1 Reply Last reply Reply Quote 0
      • GrimsonG
        Grimson Banned
        last edited by Grimson

        As you don't provide any details about your config there is really not much we can say about your problems. Some general advice, check the settings for your default gateway(s) and follow the guide: https://www.netgate.com/docs/pfsense/nat/port-forward-troubleshooting.html

        1 Reply Last reply Reply Quote 0
        • J
          Jacopx
          last edited by

          I’m running my pfSense behind a Vodafone router, the port forwarding are this one and here one of packet of my 4G connection blocked!
          1_1538495384492_8A88D012-1508-4903-A874-FE1921693601.jpeg 0_1538495384492_B84ADC7E-D3B0-46C5-9F6E-AB6CC5A93CDD.jpeg

          Great Wall (pfSense 2.4.3)
          Asrock H110M-ITX || Intel® Pentium G4400T || Crucial 4GB DDR4 || HP NC360T || CoolerMaster Elite 110
          Bunker (FreeNAS 11.1-U4)
          Supermicro X9SRA || Intel® Xeon® E5-2670 SR0KX 2.60Ghz  || Kingstone _DDR3**-**_16GB ECC || Antec One

          WAN: Vodafone FTTH (D:934mbps - U:195mbps) ~ Ping: 7ms

          1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate
            last edited by

            There is not enough information there to know if that's OK or not.

            Is that firewall log entry at the top a pass or a block? You cropped too much out to see.

            You show the port forwards but not the firewall rules. Any firewall rule above the rule to pass could also be preventing that from working.

            What rule is actually blocking that traffic? Click the block icon on the firewall log entry to find out.

            Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            J 1 Reply Last reply Reply Quote 0
            • J
              Jacopx @jimp
              last edited by Jacopx

              @jimp Thanks, it seems to be a rules of Snort (that I have deleted) that cause problem. I'll try to reboot the system.

              EDIT: I have solved according to this guide: https://forum.netgate.com/topic/119115/block-snort2c-hosts-blocking-http-traffic-for-lan-clients/2

              Great Wall (pfSense 2.4.3)
              Asrock H110M-ITX || Intel® Pentium G4400T || Crucial 4GB DDR4 || HP NC360T || CoolerMaster Elite 110
              Bunker (FreeNAS 11.1-U4)
              Supermicro X9SRA || Intel® Xeon® E5-2670 SR0KX 2.60Ghz  || Kingstone _DDR3**-**_16GB ECC || Antec One

              WAN: Vodafone FTTH (D:934mbps - U:195mbps) ~ Ping: 7ms

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.