Blocking log entry no working?



  • I am new to pfSense, coming over from SmoothWall.

    I have a entry into my firewall logs that is filing up the logs quickly,

    Dec 1 02:41:22 WAN   10.205.64.1:67   255.255.255.255:68 UDP

    I don't know where this is coming from, this is dhcp protocol. Don't know why this is coming in on the WAN?
    I do have the dhcp server running on the pfsense box, the only dhcp server running, my internal IP range is 10.60.63.45-10.60.63.62

    I click on the "red X" under Source, Easy Rule: Add to block list

    Which opens up Firewall: Aliases, it say "Hosts blocked from Firewall Log view "
    yet my log view is full of these requests.

    Any idea what I'm doing wrong?


  • Rebel Alliance Developer Netgate

    That's common to see on Cable networks. It's just DHCP traffic from your provider.

    That will always be logged unless you (a) disable the "block private networks" rule under Interfaces > WAN, and (b) add a rule at the top of your WAN firewall rules that blocks UDP from any port 67 to 255.255.255.255 port 68


Log in to reply