Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Blocking traffic at random

    Scheduled Pinned Locked Moved Firewalling
    2 Posts 2 Posters 527 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      kfolman
      last edited by

      Hi guys.

      I 've stumble across a really weird problem.
      Our firewall sometimes blocks and sometime accepts packets to a openvpn host.

      So, I've even created an any rule, as the first rule, on both interfaces, so nothing should be blocked right?

      But still, these two appears in my logging (see attached)

      The passed package, is the rule, that are supposed to pass that specific package, so that's all good.
      But the blocked rule, is the last rule on the lan interface, set to reject all traffic. But how is it passing a package, and then a short time after blocking an almost identical package?

      I hope someone out there can shed some light on this issue.

      Thanks!
      Kasper
      blockedrpackage.png
      blockedrpackage.png_thumb

      1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator
        last edited by

        much easier to read if you just posted a screenshot of pfsense firewall log.  I don't see where state is listed there.  But one of your rules is pass and the other is block.

        Your timestamp is the same on these entries..

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.