Firewall (pass) rule being ignored and traffic still being blocked

SpicySpice

I have an issue where traffic is being blocked despite the creation of an "allow all" rule. I've also tried simply allowing pfsense to create its own "easy rule" and move that rule right to the top of the queue, yet traffic is still being blocked by the "Default deny rule IPv4 (1000000103)".

I have even tried rebooting which hasn't fixed the issue.

In the log, I'm seeing:

Oct 31 13:22:51 MANAGEMENT Default deny rule IPv4 (1000000103) 10.0.10.15:60146 10.0.17.10:445 TCP:FA

kiokoman

@SpicySpice said in Firewall (pass) rule being ignored and traffic still being blocked:

TCP:FA

https://docs.netgate.com/pfsense/en/latest/troubleshooting/log-filter-blocked.html
This is likely due to a TCP FIN packet arriving after firewall has removed the connection state. This happens because on occasion a packet will be lost, and the retransmits will be blocked because the firewall has already closed the connection.....

if you have trouble connecting to that pc you could have asymmetric route and you need to investigate and resolve that problem.