• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Blocking traffic at random

Scheduled Pinned Locked Moved Firewalling
2 Posts 2 Posters 476 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • K
    kfolman
    last edited by Sep 28, 2017, 5:50 AM

    Hi guys.

    I 've stumble across a really weird problem.
    Our firewall sometimes blocks and sometime accepts packets to a openvpn host.

    So, I've even created an any rule, as the first rule, on both interfaces, so nothing should be blocked right?

    But still, these two appears in my logging (see attached)

    The passed package, is the rule, that are supposed to pass that specific package, so that's all good.
    But the blocked rule, is the last rule on the lan interface, set to reject all traffic. But how is it passing a package, and then a short time after blocking an almost identical package?

    I hope someone out there can shed some light on this issue.

    Thanks!
    Kasper
    blockedrpackage.png
    blockedrpackage.png_thumb

    1 Reply Last reply Reply Quote 0
    • J
      johnpoz LAYER 8 Global Moderator
      last edited by Sep 28, 2017, 5:16 PM

      much easier to read if you just posted a screenshot of pfsense firewall log.  I don't see where state is listed there.  But one of your rules is pass and the other is block.

      Your timestamp is the same on these entries..

      An intelligent man is sometimes forced to be drunk to spend time with his fools
      If you get confused: Listen to the Music Play
      Please don't Chat/PM me for help, unless mod related
      SG-4860 24.11 | Lab VMs 2.7.2, 24.11

      1 Reply Last reply Reply Quote 0
      2 out of 2
      • First post
        2/2
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
        This community forum collects and processes your personal information.
        consent.not_received