Default LAN block: destination [ff02::fb]:5353
MaxBishop last edited by
I have a Verizon DSL Router between the internet and my pfsense router, ie the WAN is itself on a NAT'ed network.
The pfsense LAN is a private, non-hostile network. On the LAN interface I have unchecked Block private networks and loopback addresses. (If it matters, I have the Avahi package installed/enabled because I have Linux machines that use mdns in the nssswitch configuration.)
I am using the default LAN rules. In the LAN firewall logs, I have frequent Default deny rule IPv6 blocks appearing:
Source: A valid LAN IPv6 address
Is this default rule preventing broadcasts to the Verizon router's NAT and/or the outside world… or is it simply complicating my private network on the LAN side of my pfsense firewall?