Ping in diagnostics pass through firewall rules

situate

Hi!

I create a firewall rule to block trafic from ARC to ILO VLAN.
I test in computer using Ping and receive Request timed out as required.
However when i test from Ping page in PFsense the request pass. I choose source ARC and hostname a computer in ILO VLAN.

Why PING was not blocked?

Rico

pfSense sees traffic as it ENTERS an Interface.
https://docs.netgate.com/pfsense/en/latest/firewall/firewall-rule-basics.html

-Rico

situate

Hi!

Are you try to telling me that in pfsense i can not test the rule as like a router cisco?
On cisco we can specify the source lan and if exists a block rule the ping is blocked.

jimp

@situate said in Ping in diagnostics pass through firewall rules:

Are you try to telling me that in pfsense i can not test the rule as like a router cisco?
On cisco we can specify the source lan and if exists a block rule the ping is blocked.

That is correct. Traffic initiated from the firewall cannot enter an interface on the firewall, only exit. That kind of test can only be performed from an external system.