Blocking log entry no working?
-
I am new to pfSense, coming over from SmoothWall.
I have a entry into my firewall logs that is filing up the logs quickly,
Dec 1 02:41:22 WAN 10.205.64.1:67 255.255.255.255:68 UDP
I don't know where this is coming from, this is dhcp protocol. Don't know why this is coming in on the WAN?
I do have the dhcp server running on the pfsense box, the only dhcp server running, my internal IP range is 10.60.63.45-10.60.63.62I click on the "red X" under Source, Easy Rule: Add to block list
Which opens up Firewall: Aliases, it say "Hosts blocked from Firewall Log view "
yet my log view is full of these requests.Any idea what I'm doing wrong?
-
That's common to see on Cable networks. It's just DHCP traffic from your provider.
That will always be logged unless you (a) disable the "block private networks" rule under Interfaces > WAN, and (b) add a rule at the top of your WAN firewall rules that blocks UDP from any port 67 to 255.255.255.255 port 68