MISC observation

tommyboy180

This is more of an FYI than a question for the forum community.

Just recently I deployed a fresh install of pfsense in a network that was using IP Cop as their perimeter fw. When I got everything up and running I proceeded to create the DMZ using Port Based VLANs.

When I was setting up the fw rules, nothing was working as expected. Traffic was still being passed even though I had an explicit deny on that IF and all settings had taken.

My Fix action was to make a change to the fw and reboot the fw. Rules were now in full effect when the system came up and I was able to move on to the next step.

I am not sure why this happened, I even gave the system ample time to apply the new settings. The pfsense book didn't mention anything about this. It could be a hardware issue or something related to the environment.

Perry

IIRC there is a note that a reboot might be needed when creating vlan(s)
On a new install the fastest way for me is to:
boot from livecd -> create vlan(s) and nic(s) in console -> 99 to install on disk

Reset states table is also a good ting to remember, when messing around with rules.

tommyboy180

Cool. Thank you.