LAN packets getting blocked by default but any is allowed

jeremyy

I have pfSense running in a transparent bridge.
On the LAN side I have any any allowed although traffic within the LAN side is getting blocked.

TCP:R for port 135 on the LAN side..

pfctl -d (no problems)…

pfctl -sr

pass in quick on fxp0 from <mp_subnet> to <mp_subnet> flags S/SA keep state label "USER_RULE"
pass in quick on fxp0 all flags S/SA keep state label "USER_RULE: Default LAN -> any"
pass in quick on fxp0 inet proto tcp from any to 127.0.0.1 port = ftp-proxy flags S/SA keep state label "FTP PROXY: Allow traffic to localhost"
pass in quick on fxp0 inet proto tcp from any to 127.0.0.1 port = ftp flags S/SA keep state label "FTP PROXY: Allow traffic to localhost"
anchor "imspector" all
anchor "miniupnpd" all
block drop in log quick all label "Default deny rule"
block drop out log quick all label "Default deny rule"</mp_subnet></mp_subnet>

ANy idea what I am missing with this?

jeremyy

Screen shot of the dropped packets on LAN side.
I have to snip IP addresses but they are with in the same subnet, all local.

robtoronto

..NAT Reflection http://doc.pfsense.org/index.php/Why_can't_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks%3F

cmb

reflection has no relation.

http://doc.pfsense.org/index.php/Logs_show_%22blocked%22_for_traffic_from_a_legitimate_connection,_why%3F