Firewall log TCP -S
-
Please, someone explain is it normally or not. I have read about this , but still in doubt, This is normally or something wrong with a rule or traffic passing. This is log entry regarding rule to pass VPN traffic over poxy port VPN provider. Vpn use UDP protocol, btw!
-
I'm not sure what you're asking here.
Given that floating, quick, outbound rule, traffic to the remote proxy that leaves the VPN will open a state like that, yes.
What exactly is that rule supposed to be doing?
Steve
-
@stephenw10
I have a rule to block RFC 1918 from WAN and without this rule above block RFC do not have internet access.
and firewall log show protocol TPC-S from any 10.0.0.0/8 to 10.8.0.1. The question , is it suppose to be normally in this case?
pfSense plus 24.11 on Topton mini PC
CPU: Intel N100
NIC: Intel i-226v 4 pcs
RAM : 16 GB DDR5
Disk: 128 GB NVMe
Brgds, Archi -
Yes, that's what I'd expect to see given that rule.
-
@Antibiotic curious what you feel are highrisk ports?
-
-
@Antibiotic curious let see if you get any hits on those ;)
An intelligent man is sometimes forced to be drunk to spend time with his fools
If you get confused: Listen to the Music Play
Please don't Chat/PM me for help, unless mod related
SG-4860 24.11 | Lab VMs 2.7.2, 24.11 -
@johnpoz Just for a hobby)))
-
@johnpoz BTW , I left a block rule for private network only on WAN and this TPC-S disappear from my log)))
-
@johnpoz said in Firewall log TCP -S:
curious let see if you get any hits on those ;)
Probably depends on what types of clients are behind the firewall. I'd certainly expect some hits on some of those.
