1:1 NAT cease to work after some time
I've a strange problem with my pfsense:
For our PBX I use 1:1 NAT.
After startup of the pfSense everything works perfect. After some Time (days, sometimes weeks) traffic from the PBX into the internet is dropped inside the pfsense. And only this traffic is dropped, everything else continues to work.
When I simply "resave"* the WAN-Interface (without changing anything) in the UI, the traffic flows again.
So, is there some statecounter/buffer or something which resets after saving the WAN Interface? The logs show nothing serious.
The pfsense ist 2.4.2-RELEASE at the moment.
resave: Interfaces => WAN => Save => Apply
Further informations to this phenomene:
The PFSense runs virtualized on XEN Hosts. After a live-migration of the VM while packets are dropped, everythings works again. We have another PFSense in a completely different setup with similar problems concerning 1:1 natted Systems running on VMWare ESX. On ths system my colleague implemented a cronjob which regularly resaves the WAN-Interface to prevent this phenomene ;-/