Can't ping 8.8.8.8 or google.com

duvel

Hello,

I cannot ping 8.8.8.8 or google.com from a host machine on LAN. I CAN reach google through a browser. When I check the firewall logs, I see several "Default deny rule IPv4 (1000000103) - ICMP." I AM able to ping them through Diagnostics/Ping, using WAN or LAN as the source, and I AM able to run a Traceroute from the same Diagnostics page, using ICMP or not, from LAN or WAN.

I can't do this from another subnet either. (OPT1).

Any idea?

mcury

@duvel u are probably allowing tcp/udp only, or maybe only tcp.
create an allow rule for LAN subnet to reach 8.8.8.8, protocol icmp , request.

Gertjan

@duvel said in Can't ping 8.8.8.8 or google.com:

Any idea?

Yeah, sure, as the firewall log message showed : you've no more firewall rule then let pass outtpoing ICMP ( also known as the 'ping' protocol).
I propose : add it ?!

Or Get the firewall rules back you've found on LAN when installed pfSense - and cloned these rules on the OPT1 interface (and changed "LAN-net" for "OPT-net" as the source).

Remember : TCP, UDP and ICMP traffic is important, and there are more, but these cover your day to day needs.

duvel

Thanks all.

I changed the firewall rule to "All", instead of just TCP/UDP, and that fixed it.

Is there no way to select more than 1 protocol in the same rule? Or do you have to create a separate rule for each protocol? I would rather select TCP/UDP & ICMP than allow All.

Gertjan

@duvel said in Can't ping 8.8.8.8 or google.com:

I would rather select TCP/UDP & ICMP than allow Al

This works just fine, and is the default :

because you don't trust the other 252 ?: