PFSense [RST, ACK] packet when accessing a site
-
Yes, that ^.
But, also yes, you can use that to prove where the problem is but you should fix it at the root which is probably the server config or some rule in the FreeNAS networking.
Steve
-
@stephenw10 ok, guys. thanks. I can see the port 8000 is coming from the svr vlan gateway address now instead of the wh2900c. and it is still being reset.
So it is clear, it is the truenas 12.1 box (or the jail that the weewx is running in).
any chance to guide me here with your freebsd knowledge pls
-
How exactly are you seeing that? In the state table? Packet capture?
I would have expected the connection to succeed after being translated to the interface address.
Steve
-
@stephenw10 packet capture instead of the wh2900c address from before, it shows the svr vlan gateway address. so both addresses are on the same network.
-
Mmm, OK. Well if you are seeing traffic leave the interface the server is on and using the interface IP then pfSense is both routing and translating correctly.
Something in the FreeNAS firewall or the server config is rejecting it for some other reason.Check the server logs. Are those requests actually getting that far?
Steve
-
@stephenw10 thanks guys. i got it working. was an issue with the application.
-
@gwaitsi said in PFSense [RST, ACK] packet when accessing a site:
i got it working. was an issue with the application.
I would remove your source nat then.. I wouldn't recommend natting between local networks.
-
@johnpoz already did, thanks :-)