Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Firewall logs showing incorrect Interface

    2.5 Development Snapshots (Retired)
    1
    1
    89
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      kossie last edited by kossie

      Hi Ya,
      I am running "2.5.0-DEVELOPMENT (amd64)
      built on Mon Jun 03 18:12:16 EDT"

      alt text

      I noticed my firewall Logs for some reason are showing the incorrect information.

      alt text

      The NordVPN gateway IP is 10.8.253.121 but for some reason the interface is shown as "lo0"

      I have all my DNS traffic routed through my VPN cilent (NordVPN) using DNS over TLS and it has been working fine, Blocking all traffic from my WAN connections and routing secure DNS queries through the VPN.

      alt text

      but as you can see, I have selected to log packets for these firewall rules, and they used to log all the DNS queries, but for some reason there are no State showing for these rules anymore.

      and when looking at the full log for the firewall for port 853, All the traffic is coming from "lo0" and that is incorrect.

      alt text

      When doing a packet capture on the NordVPN interface I can see that the secure DNS traffic is being passed correctly and isn't being leaked, but the firewall logs are not showing this information correctly.

      The setup was working perfectly before 16th of May snapshot, but since I have updated this bug has appeared.
      I have tried a fresh install and loading my backup config (I have a very complicated setup to do from scratch), also cleared/reset the logs but the issues still persists with my configuration.

      If anymore information is needed please let me know!

      1 Reply Last reply Reply Quote 0
      • First post
        Last post

      Products

      • Platform Overview
      • TNSR
      • pfSense
      • Appliances

      Services

      • Training
      • Professional Services

      Support

      • Subscription Plans
      • Contact Support
      • Product Lifecycle
      • Documentation

      News

      • Media Coverage
      • Press
      • Events

      Resources

      • Blog
      • FAQ
      • Find a Partner
      • Resource Library
      • Security Information

      Company

      • About Us
      • Careers
      • Partners
      • Contact Us
      • Legal
      Our Mission

      We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

      Subscribe to our Newsletter

      Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

      © 2021 Rubicon Communications, LLC | Privacy Policy