Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pfsense protocol shows as options in the log

    Scheduled Pinned Locked Moved IPv6
    3 Posts 3 Posters 617 Views 4 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C Offline
      cayossarian
      last edited by cayossarian

      I'm dealing with Matter devices on my network and occasionally I see log entries that show the protocol as "options" as depicted in the image. To try to determine what this means I tried to add a rule with easy rule and of course it threw an error saying that options was an invalid protocol. What does this log entry mean? I have rules that allows link-local to the broadcast address ff02::fb so I'm not sure why these entries even appear occasionally.

      6B7449AF-06E7-4277-9933-8DD702F48938.jpeg

      1 Reply Last reply Reply Quote 0
      • M Offline
        michelv
        last edited by

        Any update on this question? I see these types of entries as well, trying to figure out to keep them blocked and for what.

        johnpozJ 1 Reply Last reply Reply Quote 1
        • johnpozJ Online
          johnpoz LAYER 8 Global Moderator @michelv
          last edited by johnpoz

          @michelv I don't recall ever seeing that in my logs, but then again I block a lot of multicast at the switch level, but if I had to guess it would be this

          https://docs.netgate.com/pfsense/en/latest/firewall/configure.html#ip-options

          TCP options should only ever be in SYN packets.. That clearly isn't a SYN. when sent to broadcast ff02::fb

          I would sniff and look at those that are blocked.. If you don't want those logged you could set a non log rule with ip options checked.

          options.jpg

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 25.07.1 | Lab VMs 2.8.1, 25.07.1

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.