Rule banned my IP, how/where to unban?
Im new to pfesense, still learning and I managed to somehow ban my home IP.
I created a new rule with advanced options to prevent Brute force attacks on my server's remote desktop port (I got pfsense on a box with a server running windows behind it in a rack).
Basically I created a new "pass" rule with 3389 as destination port and in advanced options I have set:
1 maximum number of unique source hosts
5 maximum number of established connections per host
1 maximum new connection per 15 seconds
Then I tried to connect multiple times to my server via remote desktop and the rule worked as it did not let me.
Only issue is that my IP has been banned and even if disabling the rule it remains banned.
I can still access my pfsense web UI from another IP.
Any help will be apreciated as I have not found how/where to unban myself (searched on google and on thse forums but might be using too much generic keywords).
Clear the firewall state table in Diagnostics: States: Reset States.
Thank you I will try that
That actually lands you in a special table. The place you'd need to clear is under Diagnostics > Tables, "virusprot" I believe.
Remove the record from that table and you should be able to send packets again, or just wait for the entry to timeout (takes a couple hours)