Default IPv4 rule blocking port forward

twistable_deer

Hey guys! So I am stumped on why my port forward and firewall rule doesn't work. So I was to port forward to my Deluge client over my VPN which I was able to do but when I check on an online port open website, it said that the port was closed. So I took a look at the firewall logs and I can see that the firewall is blocking incoming connections on my specified port 26418 by the Default IPv4 deny all rule but I can't seem to find the default rule to ensure my custom rule is above it so I suspect it's a hidden rule. I've attached a few screenshots so you guys can take a quick look to make sure I didn't goof when making the rule.

Thanks!
![Screen Shot 2018-01-25 at 5.03.23 PM.png](/public/imported_attachments/1/Screen Shot 2018-01-25 at 5.03.23 PM.png)
![Screen Shot 2018-01-25 at 5.03.23 PM.png_thumb](/public/imported_attachments/1/Screen Shot 2018-01-25 at 5.03.23 PM.png_thumb)
![Screen Shot 2018-01-25 at 5.08.45 PM.png](/public/imported_attachments/1/Screen Shot 2018-01-25 at 5.08.45 PM.png)
![Screen Shot 2018-01-25 at 5.08.45 PM.png_thumb](/public/imported_attachments/1/Screen Shot 2018-01-25 at 5.08.45 PM.png_thumb)

Harvy66

One thing that stands out is the destination IPs don't match. Your Rule is for 192.x.x. while the blocked traffic is for 10.x.x.x

twistable_deer

So after futzing around for a few hours, I find that setting the Dest.Address on my port forward to This Firewall opened up the port nicely and the firewall stopped blocking the incoming traffic.

Thanks!

johnpoz

"port forward to This Firewall"

Huh… No that is not how port forwarding works..

Your trying to allow traffic in through a vpn client connection you have on pfsense to some vpn service? Does this service support port forwarding?