WAN Briding firewalling issues…

  • Hi all,

    I'm trying to setup pfSense to bridge my WAN to the third ethernet port.

    Here's my setup:

    vr0: WAN
    vr1: LAN
    vr2: WANPassthrough

    I allowed traffic from vr0 to vr2 and backwards, but for some reason I still get entries like this:

    Oct 5 20:42:47 	pf: 000076 rule 78/0(match): block in on vr2: (tos 0x0, ttl 64, id 43896, offset 0, flags [DF], proto TCP (6), length 48) kkk.fff.145.109.445 > aaa.bbb.34.42.1754: S, cksum 0xfd91 (correct), 80006025:80006025(0) ack 4026818539 win 5840 <mss 1460,nop,nop,sackok="">Oct 5 20:42:47 	pf: 8\. 970171 rule 78/0(match): block in on vr1: (tos 0x0, ttl 64, id 19813, offset 0, flags [DF], proto TCP (6), length 52) kkk.fff.145.109.445 > aaa.bbb.10.95.4773: S, cksum 0x2a47 (correct), 81519642:81519642(0) ack 104851259 win 5840</mss> 

    kkk.fff.145.109 is the ip I got on one of the clients connected to vr2.

    what I don't get, is:
    why is vr1 even listed there?

    look at the ruleset:

    it should be allowed… ?!!

    thanks in advance!

Log in to reply