All LAN traffic blocked by default rule



  • Hi,

    I have setup a pfsense virtual machine on hyper-v. i want to use it to control a secure LAN which will authenticate wired connections using the freeRADIUS package.

    I have the freeRADIUS part working but am struggling with the firewalling side of it. At present i have configured rules to allow access to the appliances LAN IP from the switches on the RADIUS port but the traffic is blocked by the default deny rule on the LAN interface. Even adding the rule using the quick add feature from the log doesn't help. If it disabled the firewall it works perfectly.

    Any help on this would be appreciated!



  • This :

    @atemple said in All LAN traffic blocked by default rule:

    but the traffic is blocked by the default deny rule on the LAN interface

    doesn't match the manual https://www.netgate.com/docs/pfsense/firewall/firewall-rule-basics.html

    On LAN, without any (yours !!) rules, traffic passes because there is a default pass rule - present when installing..


  • LAYER 8 Netgate

    What are you trying to do? 802.1X on a switch behind pfSense LAN?

    If so, you'll have to describe exactly how it is configured. If that is the case I would expect the RADIUS traffic from the switch to be on some sort of management VLAN out-of-band from the post-auth traffic from the clients on LAN (or whatever VLAN RADIUS tells the switch to assign to the authenticated client's port).


Log in to reply