New installation strange behavior - I can access web interface. however, I can't ping to the device
-
@popeel-SSH said in New installation strange behavior - I can access web interface. however, I can't ping to the device:
Pfsense do not do that as we might need to find the rule and delete that.
Nope, just think about stateful rules work. It doesn't block at once if you add a block rule and have a working connection state established. BUT if that state expires/gets closed it blocks any new attempt. But you can also see that it works the other way round:
- add a block ICMP rule for your internal IP only so you cannot ping pfSense' LAN interface
- save and apply ruleset
- start a ping on your desktop
- disable the block rule
- hit apply
- wait a moment ... ha! pings start!
- now enable the block again
- hit apply
- -> ping continues, as the "state" for icmp allows that ping to continue. Open up another window and run a ping there - oops, no ping! but the other still continues!
- close second window
- cancel the continuous ping in window 1
- ping again - oh no ping! (as the state has "expired" or more specific, the "new" ping can't create a state anymore as it is blocked now)
So with it going from "no ping" to "ping" that's your case: it was reloaded and activated immediatly. Other way round it was also active but you could only see that in the second window, as the first one had an active unexpired state. :)
-
@JeGr said in New installation strange behavior - I can access web interface. however, I can't ping to the device:
no ping" to "ping" that's your case:
Thanks and it does explain everything .... You are a star.
