Why is Firewall blocking this

jmul

LAN2    192.168.2.2:51496      38.114.132.204:110      TCP:FA
I am seeing these messages and cant figure out why my firewall is blocking them

Default deny rule IPv4 (1000000103)
LAN2    192.168.2.10:44177      216.58.216.161:443      TCP:FA
  Default deny rule IPv4 (1000000103)

My Firewall rules for this net are:
PASS  IPv6 *    LAN2 net    *    *    *    *    none        Default allow LAN2 IPv6 to any rule         
PASS  IPv4 *    LAN2 net    *    *    *    *    none        Default allow LAN2 to any rule

why is it being blocked when I have any LAN2 Source is allowed to any? Thanks I am new to firewall rules so be easy on me :)

Thanks
Jason

pfBasic

https://forum.pfsense.org/index.php?topic=39960.0

dabigoreo

Try this (see link) using the manual fix, seems to have worked for me. This was driving me crazy as well until I found that article.

https://doc.pfsense.org/index.php/Asymmetric_Routing_and_Firewall_Rules

johnpoz

Huh?  The correct fix to asymmetrical routing, it to fix it so you do not have asymmetrical routing - not adjusting your firewall rules..

pfBasic

Isn't this just out of state traffic?

johnpoz

Yeah could be just some random out of state packets.  That amounts to log noise, but if they are being caused by asymmetrical routing the correct fix is to fix the routing problem not adjust the firewall to sloppy.