Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Firewall blocks ports after a certain time

    Firewalling
    3
    5
    825
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mrremo
      last edited by

      I have set up two port forwardings. These work so far.
      f62acf92-184f-4e96-879e-1ed8ff1acee9-image.png
      This port forwarding has automatically added two rules.
      f5f3138f-a66a-46b2-a043-c54c0ee5c16b-image.png
      18d00bdb-04f5-4034-b6bf-7749fb84e1e3-image.png

      When I do a portscan on my public IP, I see that the ports are open.

      For a few days or even a few weeks everything works perfectly. But suddenly the ports are blocked. In the firewall state table there are no more connections and the port scan on my public IP also shows that the ports are closed.

      Does anyone have any idea what this could be or how I should debug this?

      GertjanG 1 Reply Last reply Reply Quote 0
      • GertjanG
        Gertjan @mrremo
        last edited by Gertjan

        @mrremo said in Firewall blocks ports after a certain time:

        the port scan on my public IP

        Just to be sure : the WAN IP you use to check is still your WAN IP ?

        Here is a tool (image of a tool, fire up Google to find it) https://forum.netgate.com/topic/178966/problems-with-nat/5?_=1679583290537 so you can double check your ports.

        When checking, and traffic arrive 'at the gate', these counters

        194610bb-33a6-4d83-835c-671ea9fcf0d7-image.png
        start to increment.
        If not, traffic never even reached (the WAN interface of) pfSense.

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        M 1 Reply Last reply Reply Quote 0
        • M
          mrremo @Gertjan
          last edited by

          @gertjan said in Firewall blocks ports after a certain time:

          Just to be sure : the WAN IP you use to check is still your WAN IP ?

          Yes, I am sure that I am scanning the correct IP. It is a static public IP.

          If the portscan says that the ports are closed, then the counters are not incremented.

          johnpozJ 1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator @mrremo
            last edited by

            @mrremo and what fixes it - does it just start working again.

            Is it possible your destination box that 192.168.0.2 is changing Ips, or service(s) are stopping?

            Whenever you have an issue with port forwarding - its always good to troubleshoot it just like you would when trying to set it up. Validate traffic is actually getting to your wan - your can you see me and packet capture on wan, and then lan interface - if pfsense sends on the traffic - but no response then you know its something downstream of pfsense.

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.03 | Lab VMs 2.7.2, 24.03

            M 1 Reply Last reply Reply Quote 0
            • M
              mrremo @johnpoz
              last edited by mrremo

              @johnpoz said in Firewall blocks ports after a certain time:

              @mrremo and what fixes it - does it just start working again.

              So far only a reboot has helped.

              @johnpoz said in Firewall blocks ports after a certain time:

              Is it possible your destination box that 192.168.0.2 is changing Ips, or service(s) are stopping?

              The IP is also a static one. So no, it has not changed. The service is running. It is accessible on the LAN. I am sure that the problem is not with the server (192.168.0.2), because the VPN port is also blocked. The VPN server is running on the pfSense box.

              @johnpoz said in Firewall blocks ports after a certain time:

              Validate traffic is actually getting to your wan

              The next time the problem occurs, I will double-check.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post