@5(1000000103) block drop in log inet all label "Default deny rule IPv4".

rahmadilahi96 · Feb 4, 2018, 11:15 AM

Hello, all
i'm a new user in pfsense, and i have a problem.
initially all clients can connect to the internet, but after some time arrived "all clients can not connect again, but still can ping to google dns like 8.8.8.8 and 8.8.4.4.
when I look in the system logs menu, I see that the LAN interface is blocked with a comment like the following
@5(1000000103) block drop in log inet all label "Default deny rule IPv4"
Anyone can help me please…

johnpoz · Dec 9, 2019, 9:39 AM

your traffic is asymetrical? There would be no reason for traffic to be blocked on lan with default any any rule unless the states go away and no pfsense does not know about the state, asymmetrical could cause this. Or your flushing the states? Your gateway went down and you state table flushed?

If your gateway is up down, etc.. turn off flushing states… If you have pfsense set to flush states on gateway down, then clients would be blocked until they open a new session via SYN to where they are going..

rahmadilahi96 · Feb 4, 2018, 12:23 PM

Where I can find that setting ? ;D :D

johnpoz · Feb 4, 2018, 12:33 PM

System / Advanced / Miscellaneous

rahmadilahi96 · Feb 4, 2018, 12:47 PM

Ok, Thank you for the help and response @johnpoz :)

Jeonetgate · Dec 9, 2019, 9:39 AM

i have the same problem Miscellaneous flush setting is not enabled but couldn't get internet to lan hosts

nh5 · Mar 26, 2020, 8:15 AM

@Jeonetgate Having this same issue as well on 2.4.4p3. No flush settings are enabled. Traffic is getting blocked by this default rule. ICMP traffic about 75% of it gets lost due to this. Do have two WANs configured.