Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    WAN_DHCP Gateway Falsely Showing Down b/c of Firewall Rule Blocking Ping

    Scheduled Pinned Locked Moved Firewalling
    2 Posts 1 Posters 153 Views 1 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C Offline
      CraigInGA
      last edited by

      Problem: The automatically generated "WAN_DHCP" gateway incorrectly shows down because the ping to the gateway is getting blocked by a firewall rule.

      The firewall log shows the ping being blocked by @25(1000001570)

      @25(1000001570) looks like this:

      @25(1000001570) block drop in log on ! re1 inet from 99.73.20.0/22 to any
  [ Evaluations: 302973    Packets: 0         Bytes: 0           States: 0     ]
  [ Inserted: pid 89572 State Creations: 0     ]

      however, this rule is not found anywhere in /tmp/rules.debug so I can't figure out why it is getting generated! Rebooting does not fix it either. Any ideas?

      Thanks!

      1 Reply Last reply Reply Quote 0
      • C Offline
        CraigInGA
        last edited by

        Just checked /tmp/rules.debug again today and realized the rule is in fact in there:

        antispoof log for $WAN tracker 1000001570

        The WAN interface is getting a DHCP assigned address and gateway from the internet provider...so why is the rule above blocking a ping attempt to the gateway address assigned by the internet provider?

        Thanks!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.