Default LAN -> any



  • Just got a new install of pfsense going but having some problems with the default LAN not triggering and passing all traffic out. I've been bashing my head on the keyboard for a couple days but can't figure out what's going on. Hoping someone can spot my error?

    The only rule that exists for LAN(em4) is (output is from 'pfctl -vvs rules'):
    @92 pass in quick on em4 inet from 10.30.0.0/16 to any flags S/SA keep state label "USER_RULE: Default LAN -> any"

    I'm seeing outbound traffic on LAN/em4 blocked on http/80 and imaps/993 on some addresses but not all with no real pattern emerging.

    Some examples of traffic not being passed out:
    Jul 27 11:13:30 nyx pf: 500075 rule 100/0(match): block in on em4: (tos 0x0, ttl 64, id 20907, offset 0, flags [none], proto TCP (6), length 89) 10.30.4.110.53204 > xxx.85.199.109.993: FP, cksum 0xa8f1 (correct), 0:37(37) ack 1 win 65535 <nop,nop,timestamp 187908887="" 1422336178="">Jul 27 11:13:08 nyx pf: 000012 rule 100/0(match): block in on em4: (tos 0x0, ttl 64, id 57286, offset 0, flags [DF], proto TCP (6), length 40) 10.30.1.64.49241 > xxx.234.169.32.80: R, cksum 0x1c8b (correct), 395:395(0) ack 1 win 65535

    Jul 27 11:15:38 nyx pf: 500188 rule 100/0(match): block in on em4: (tos 0x0, ttl 64, id 61015, offset 0, flags [none], proto TCP (6), length 89) 10.30.4.110.53204 > xxx.142.4.199.993: FP, cksum 0xa7f1 (correct), 0:37(37) ack 1 win 65535 <nop,nop,timestamp 187909143="" 1422336178="">Rule 100: @100 block drop in log quick all label "Default deny rule"

    Ideas?</nop,nop,timestamp></nop,nop,timestamp>




Log in to reply