Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Rules processing error in 2.1, perhaps?

    Firewalling
    3
    7
    1181
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      craigjl77 last edited by

      Think this may be an error. Have a look at pfsenseerror.png which shows a TCP:FA packet being blocked. PfsenseErr2.png shows the rules for the Bridge0 iface, being wide open. When I click on the red cross in the system logs it shows this (@3 block drop in log inet all label "Default deny rule IPv4").

      To quote Prof. Julius Sumner Miller, "Why is it so?".



      1 Reply Last reply Reply Quote 0
      • johnpoz
        johnpoz LAYER 8 Global Moderator last edited by

        https://doc.pfsense.org/index.php/Logs_show_%22blocked%22_for_traffic_from_a_legitimate_connection,_why%3F

        You will see those all the time – I get them more from wireless clients when I notice them

        See attached, where 2.213 is my sons android phone

        C:>dig -x 192.168.2.213 +short
        android-497a3c8329e0a007.local.lan.


        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        2440 2.4.5p1 | 2x 3100 2.4.4p3 | 2x 3100 22.01 | 4860 22.05

        1 Reply Last reply Reply Quote 0
        • C
          craigjl77 last edited by

          Thanks. Where is that report from? That shows the rule, without having to click?

          1 Reply Last reply Reply Quote 0
          • johnpoz
            johnpoz LAYER 8 Global Moderator last edited by

            That is in the firewall log ;)  Just not the widget on the status page.  Status, System Logs, Firewall

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            2440 2.4.5p1 | 2x 3100 2.4.4p3 | 2x 3100 22.01 | 4860 22.05

            1 Reply Last reply Reply Quote 0
            • C
              craigjl77 last edited by

              Interesting… mine does not have that column; see attached. Did you alter the report?


              1 Reply Last reply Reply Quote 0
              • P
                phil.davis last edited by

                The Logs, Settings tab has the option to display the rule descriptions.

                As the Greek philosopher Isosceles used to say, "There are 3 sides to every triangle."
                If I helped you, then help someone else - buy someone a gift from the INF catalog http://secure.inf.org/gifts/usd/

                1 Reply Last reply Reply Quote 0
                • C
                  craigjl77 last edited by

                  Aahh, thank you pfsense Gods ;-)

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post