Weird bug, pfSense is blocking traffic despite rule to allow?

archerious · Jun 14, 2020, 12:40 PM

Even added the easypass rule but it keeps blocking me (10.1.1.41 my PC on VLAN100) over and over again. Kicking me from my Proxmox server at 10.200.200.7 (Vlan200).

What am I doing wrong?

Even tried modifying rule to be any any under VLAN100 and VLAN200 but pfSense is still blocking!

serbus · Jun 14, 2020, 6:13 PM

Hello!

What do the protocol states on the blocked packets mean?

John

mcury · Jun 14, 2020, 7:17 PM

Do you know what is TCP three way handshake?
Do you know what is a stateful firewall ?

archerious · Jun 15, 2020, 7:47 AM

Resolved by switching Firewall Optimizing from Normal to Conservative which has stopped killing legit sessions in proxmox. It's not pfSense's fault, apparently Proxmox doesn't send headers to keep the packets alive (like say FTP). Instead Proxmox seems to play better with either Conservative mode or stateless firewalls.

Thank you both for your time.