Firewall rule corruption.
-
HI, I have had this twice not on netgate 6100s. The rules seem to get corrupted part way through the config and no matter what I do the default blocks the traffic. The only fix I have found is to fasctory reset and start again. Is there any way of resetting rules? I tried to delete all rules and 1:1 nats and virtual IPs. Still did not work. The virtual IPs worked as I could browse to whatismyipaddress.com from the machine in question and it showed the correct virtual ip.
Very annoying.
I have setup probably 15 netgate unitsChris
-
Are you using Layer 2 rules ?? if so remove the default blocks in 23.09.01 they act weird on the experimental ethernet layer 2 rules.
Only Layer 2 rules
-
@JonathanLee sorry for the delay, no layer 2 rules that i know of
-
@frog check your config.xml file, first delete separators all of them and check in config.xml file to make sure they are removed. I had issues where I still had a ghost entry and it would mix all my rules up.
-
https://redmine.pfsense.org/issues/14619
This helps explain it.
Separators cause issues if you’re using them.
