After new install 1.2.1-RC2

ugur

we use 1.2-RELEASE

i new install 1.2.1-rc2 and restore used 1.2-release rules, nat, etc..
but no lan to dmz access
i compare.. equal all.

what different? help

Perry

Post your lan and dmz rules (screenshots)

ugur

this rules used 1.2RELEASE and no problem.

Perry

The 2nd rule from the top on lan and dmz has the destination to it's own net. That makes no sense to me?

ugur

this?
because pf block these ports. fw log full with this blocking lines.

if disable/delete these rules, example:
diagnostic/firewall log entries
[x block] Nov 25 17:11:45  LAN  10.6.2.225:138  10.6.2.255:138  UDP
[x block] Nov 25 17:11:44 LAN 10.6.2.248:137 10.6.2.255:137 UDP
[x block] Nov 25 17:11:44 LAN 10.6.2.248:137 10.6.2.255:137 UDP

Perry

log your port 80 rule and watch system logs as you connect to the webserver on dmz (with both name and IP).

ugur

tested again, new install and all rules/nat/etc added new.
all ok except dns rules. (dns forwarder enabled)

diagnostic/firewall log:
not any dns log.
(dns rule log enabled lan/dmz/wan, dns(.1.10) in dmz)

states:
..
udp  10.6.1.10:53 <- 10.6.2.254:1196  NO_TRAFFIC:SINGLE
udp  10.6.2.254:1196 -> 10.6.1.10:53  SINGLE:NO_TRAFFIC
udp  10.6.1.2:31073 -> 10.6.1.10:53  SINGLE:NO_TRAFFIC
udp  10.6.1.10:53 <- 10.6.2.254:1215  NO_TRAFFIC:SINGLE 
udp 10.6.2.254:1215 -> 10.6.1.10:53 SINGLE:NO_TRAFFIC
udp 10.6.1.10:53 <- 10.6.2.254:1216 NO_TRAFFIC:SINGLE
udp 10.6.2.254:1216 -> 10.6.1.10:53 SINGLE:NO_TRAFFIC
udp 10.6.1.10:53 <- 10.6.2.254:57060 NO_TRAFFIC:SINGLE
udp 10.6.2.254:57060 -> 10.6.1.10:53 SINGLE:NO_TRAFFIC
udp 10.6.1.10:53 <- 10.6.2.254:1217 NO_TRAFFIC:SINGLE
udp 10.6.2.254:1217 -> 10.6.1.10:53 SINGLE:NO_TRAFFIC