Rules problems?

andrew0401 · Jun 27, 2012, 4:27 PM

We run a simple Draytek box as a first modem/firewall before passing everyhing via pfsense into our network.

Logging of draytek activity works fine when being passed via pfsense 2.0.1 - but have just built a test box using the latest 2.1 snapshot and everthing works as expected except that the traffic from draytek to the syslog application on the network side of pfsense just vanishes - nothing in any log as why or where it went. No error when the "live" pfsense config was loaded into the test box - just all the traffic on port 514 vanishes.

Applications running are pfblock, squid & cron - there is an IPSEC tunnel running as well

Close the test box and restart the live box - logging resumes no problem.

Confused.

Andrew

podilarius · Jun 27, 2012, 6:22 PM

I would recheck the option to block private networks. If you changed interface types, you might have re-enabled that option to block.

andrew0401 · Jun 28, 2012, 5:55 AM

No - not that - all private addresses are allowed on WAN

andrew0401 · Jun 28, 2012, 6:10 AM

Second thought - the private network was the clue - I had forgotten to force mac address of test machine to be the same as live machine - now works OK

What an idiot.