No log entries for external ping in 2.4.4-RELEASE-p1 ?
-
I think I used to see FW log entries from external pings before 2.4.4-RELEASE-p1 release.
And I don't see anymore.
Anybody has seen this ?Thx
-
Nothing would have changed for that. A few possibilities:
- Traffic is dropped upstream before it reaches you
- The firewall rules are blocking but not logging the ping
- The firewall rules are passing the ping
If it was being passed, you'd see it in the state table. If it was being dropped but not logged, you could have a manual rule blocking it or maybe somehow your default block rule logging setting was changed.
-
Yeah that makes sense.
Is there a way to see somehow external pings ? I do see replies from the router -
Do a packet capture on WAN and see what's going on.
-
I do see logs from one external IP when pinging and not from others (!?)
When I do a packet capture on WAN, see ICMP thru DNS:
13:14:01.534147 IP xx.xx.xx.xx > 8.8.8.8: ICMP echo request, id 42920, seq 9544, length 8
13:14:01.537601 IP 8.8.8.8 > xx.xx.xx.xx: ICMP echo reply, id 42920, seq 9544, length 8they correspond with pings.
I see no refs to IP addresses -
I just pinged myself from my VPS (SRC) to my WAN (DST):
16:32:44.195288 IP SRC > DST: ICMP echo request, id 15515, seq 1, length 64
16:32:44.195352 IP DST > SRC: ICMP echo reply, id 15515, seq 1, length 64Perhaps your pings are being blocked at source? Whatever the reason, they're not making it to your WAN.
-
kill me!