WAN - States Details

centuryx476

Hello,
I'm having a little issue and I am not really sure how to approach this. I've been running pfsense rock solid for years now and I am pretty experienced on how to manage it.
pfSense Ver: 2.4.5
I have three ports that are NAT forwarded. For some reason, every once in a while one of the ports "States Details" keeps resetting on its own(Meaning it goes back down to 0). The picture below I have highlighted is the one that keeps resetting. I'am not entirely sure what is causing this. The only change to the firewall that I have done recently was upgrade from 2.4.4 p3 to 2.4.5
Is there a service running that is resetting the states for this NAT rule ?
And it appears to be happening once a day.

Let me know if you need any more information

Thank You

jimp

Are you seeing any actual problem when this happens? Or is it just bugging you that the counter for active states shows 0?

Those counters will go back to 0 if there are no states in the table for the connection. The fact that it shows data has been passed by the rule means there were states at one time, just not right this moment.

It's also entirely possible that the stat is wrong. Check Diagnostics > States and see what shows up there.

As to what could be resetting states, that depends on what you have installed. There are settings that would do it (reset states on gateway failure), and some packages might do it.

centuryx476

@jimp said in WAN - States Details:

Are you seeing any actual problem when this happens? Or is it just bugging you that the counter for active states shows 0?

Those counters will go back to 0 if there are no states in the table for the connection. The fact that it shows data has been passed by the rule means there were states at one time, just not right this moment.

It's also entirely possible that the stat is wrong. Check Diagnostics > States and see what shows up there.

As to what could be resetting states, that depends on what you have installed. There are settings that would do it (reset states on gateway failure), and some packages might do it.

Hello,
I understand what you saying about the states. If there are no connections then it should be "0",
It just happened right now as I was writing this(See Picture). What I am finding odd is that the values reset to "0" even though there are current connections on it. So I am not sure what is happening.
Prior to me upgrading the Firewall to 2.4.5, this was not happening. I'm not saying they are related but I just find this behavior odd.
I have two packages installed (OpenVPN, HAProxy)
This NAT forward is NOT being serviced by HAProxy.
In addition, it looks like the reset is happening around the same time every day. (Once a day)

jimp

Any time the filter reloads the stats will reset to 0. So any kind of interface event, timed filter reload (for things like schedules), or many other reasons.

The stats are not meant to be long term. Only a brief visual indication that a rule has been used.

centuryx476

@jimp said in WAN - States Details:

Any time the filter reloads the stats will reset to 0. So any kind of interface event, timed filter reload (for things like schedules), or many other reasons.

The stats are not meant to be long term. Only a brief visual indication that a rule has been used.

OK,
I believe a disconnect is happening when this is being reset. I'll wait to see if it happens.

Thank you for your assistance.
Have a good Day