Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Problems with unknown firewall rules

    Scheduled Pinned Locked Moved Firewalling
    2 Posts 1 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      m3isp
      last edited by

      I have a transparent bridge in a production environment that is working very well except for one little thing "ofcourse". It is blocking traffic that i have not created a rule to block. Using the raw filter log "see below" I can assume that the blocking rule causing my problems is #63. I sshd in to the firewall and "ee /tmp/rules.debug" looked to see which rule was the problem. This is why I'm really confused line #63 and #64 of the rules.debug file is blank. Am I looking in the wrong place? Is there another file I should checking that the rule number is referencing? If this is the correct file why does the raw log reference blank lines?

      Very Best Regards
      M3

      pf: 642664 rule 63/0(match): block in on em0: (tos 0x0, ttl 64, id 56302, offset 0, flags [none], proto TCP (6), length 48) 12...20.53 > 12...12.20468: S, cksum 0x3266 (correct), 3277293870:3277293870(0) ack 2034720925 win 5840

      1 Reply Last reply Reply Quote 0
      • M
        m3isp
        last edited by

        This is kinda unnerving either my problem is:

        1. Really obscure
        2. Really stupid
        3. Noone knows
        4. Don't have enough information

        If anyone is interested in helping me out I can give you more information on my configuration and network setup.

        Best Regards
        M3

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.