Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Some questions about rules.

    Scheduled Pinned Locked Moved Firewalling
    2 Posts 2 Posters 1.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      ce
      last edited by

      How I understand, the pfSense firewall rules have deal with conections, not with packets.
      But I don't saw next rules for tcp conections in rules.debug:
      block return-rst quick proto tcp all flags /S
      block return-rst quick proto tcp all flags A/A.
      Rules allowed to be written only for incoming conections for some IF, with prefix quick.
      All outgoing conections are allowed.
      Last rule(s) is(are) block.
      All host/nets aliases are tables.

      1 Reply Last reply Reply Quote 0
      • H
        hoba
        last edited by

        In general it works like this:

        • traffic is checkod on incoming connections at an interface
        • if the connection is allowed it will create a state to allow the reverse connection as well
        • first rule wins (top down)
        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.