PfSense 2.0-RC1 Bridge Filtering (Transparent) stopped processing rules?



  • I have a issue then has been haunting me. I setup a transparent bridge between WAN and LAN to filter public IPs. When I added/removed rules initially, it worked but after updating the snapshot it appeared to stop working.

    It's actually a simple setup, just don't know how to go about it in pfSense, maybe I am doing something wrong. It's happened before :-)

    WAN (e0)
    LAN (e1)

    Bridged both.

    System tunables:
    pfil_member set to 1
    pfil_bridge set to 1

    The weird thing is the original rules I created still work but when I deleted them they never stopped the traffic flowing. New rules don't work and removing old rules still allows traffic.

    Any ideas? Thanks all!



  • Ok, semi-resolved

    After I updated to a new snapshot, it started working again. For whatever reason, after I installed 2.0-RC1 and it was working right, then updated a snapshot, it stopped working and now I updated to a snapshot from today and it started working again.

    I will monitor it for 24 hours and post the results then mark this topic resolved.

    FYI, if you're using a transparent bridge make sure you have pfil_member set to 1, and pfil_bridge set to 1. Also make sure all of the rules are in place because it's very easy to lock yourself out of the pfSense box.

    By default, the LAN rule will allow LAN subnet to any, however when you bridge to the WAN there is no longer any LAN subnet so it's very important to change LAN to any, so on the LAN rules you should have ANY ANY.


Locked