Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    let out anything from firewall host itself

    Scheduled Pinned Locked Moved Firewalling
    5 Posts 2 Posters 1.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      briansnyder00
      last edited by

      Hello,

      I have an interesting issue. Everything going out my pfSense box is going out with the rule "let out anything from firewall host itself" and not hitting my other rules. I suspect this has something to do with NAT. All of my users NAT to a virtual IP. That VIP is shared between the WAN IP of a primary and backup box. Incoming rules seem to work normally. Has anyone seen this behavior?

      Thanks,
      Brian

      1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator
        last edited by

        Are you running proxy?

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.7.2, 24.11

        1 Reply Last reply Reply Quote 0
        • B
          briansnyder00
          last edited by

          No proxy. I did recently upgrade to 2.4.4_1 from 2.4.3_1.

          1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator
            last edited by johnpoz

            post up your outbound nats.. .It doesn't work that way unless maybe you natted yoru traffic to loopback??

            Or some oddball port forwarding for a source nat? Post up your port forwards as well.

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.7.2, 24.11

            1 Reply Last reply Reply Quote 0
            • B
              briansnyder00
              last edited by

              WAN 10.10.0.0/16 * * * 10.10.226.254 * LAN Network
              WAN 172.16.0.0/16 * * * 10.10.226.254 * Wireless

              Our network is behind a larger private network. Interestingly enough I failed over to our backup box and it is working as expected. I may have some hardware or config issue on the primary, but they look the same. Perhaps another reboot will help the situation.

              A little background... I was having an issue with the backup box not connecting to the web. Updates, packages etc... I thought I had it fixed by natting "This Firewall (self)" to interface address. I have removed that while troubleshooting.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.