Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    GRE and firewall

    Scheduled Pinned Locked Moved Firewalling
    3 Posts 2 Posters 1.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P Offline
      PDJ
      last edited by

      I have setup a ipsec tunnel with GRE, GRE is defined as Interfaces, setup static routes etc. and everything is working just fine, I can reach both ends subnet.
      But now I want to do some firewalling and I can't get that one to work.
      When I block all traffic on the GRE interface, I can still ping other boxes, so it doesn't do anything with the firewall settings.
      When I do a Packet capture, I see the traffic going trough the GRE interface.

      What do I do wrong, or what do I have to change?

      1 Reply Last reply Reply Quote 0
      • KOMK Offline
        KOM
        last edited by

        We would have to know what you did in the first place to be able to tell you if it's wrong or needs to be changed.  Your network config?  Your firewall rule that failed?  Your packet capture showing the traffic not being blocked?…  You've given almost no detail.

        1 Reply Last reply Reply Quote 0
        • P Offline
          PDJ
          last edited by

          I figured it out, the GRE will be handled in the floating firewall rules, not in the interface firewall rules.
          So all firewalling goes there.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.