Order of Operation - Port Exceptions Help!



  • Hi guys,

    I've been using PFSense for the last year. However, I'm actually Watchguard certified so this is a big change for me. I'm still getting a handle on how a few things function in PFSense compared to a Watchguard. My issue here is with Port Exceptions and Order of the exceptions.

    Here is my issue.

    I have a web server on one device that has ports 80 and 433 open in the firewall so I can access webpages.

    I also have a PS3 on the network. According to Netflix. It suggesting opening ports 80 and 443 as well. (I'm currently getting random "there was a problem playing this title" when I'm half way through movies etc…)

    However, when I open port 80 and 443 for my PS3 which is on a static IP. Netflix works fine but I can no longer access my website on those ports.

    I changed the order of operations and moved PS3 to the bottom of my port forwarding rules and the web server to the top of my rules. Saved the changes and nothing.

    In order to restore my web server. I had to remove ports 80 and 443 exceptions from the PS3 policy. However, now I'm back to having the time out issues with Netflix.

    With a Watchguard. As long as the order of operation was in place (ie, placing them in the correct order in the policy list) would normally resolved this issue. However, it doesn't seem to function this way with PFSense.

    Any idea why? Ideas?