Cannot connect from pfsense device to monitoring server

ncted

I just setup a new 4200 to firewall a network of Windows 7 computers from the rest of the network for security compliance reasons. The WAN interface is on a trusted, internal network.

We want to add the device to our monitoring system, which uses Xymon (like Big Brother if you remember that). There is an agent that runs on the device and reports data to the Xymon server over TCP/1984. I have installed and configured the agent.

The server is on the outside. I can ping it from the shell on the 4200, but I cannot make any TCP connections to the Xymon server or any other outside hosts. I assume I need to add some kind of rule or configuration to allow the traffic to exit the firewall that is generated by the agent, but it isn't clear to me how to do that.

If anyone has any suggestions, I'd appreciate it.

NickD 0

@ncted I've used pfSense in this capacity before but it was quite some time ago. If I recall correctly I setup pfSense in a filtering/router capacity by disabling outbound NAT rules and setting up static routes on my upstream (internal network) firewall/router so my production LAN would have routes to the pfSense LAN side hosts network via the pfSense WAN interface. I believe I also set my internal upstream router as the pfSense WAN interface default gateway. Also keep in mind that if you disable outbound NAT your pfSense LAN side must not overlap any of your normal production LANs.

Hope that helps.