Blocking TCP:RA, TCP:FPA,TCP:A

localhostx

Hi all,

I have the attached rules in my LAN and OpenVPN IFs. However, there are still rejected packets such as [Rst,Ack] and etc.. Do you have any idea of why?

thanks

logs.png_thumb

openvpn_rules.png_thumb

lan_rules.png_thumb

GroundX

Did you set any advanced features on the FW rules (LAN side?).
Seems to me like it should work.

localhostx

No advanced firewall rules.

Can this be because of an invalid flag for the current state of TCP connection?

johnpoz

This is typical out of state being blocked..

https://doc.pfsense.org/index.php/Why_do_my_logs_show_%22blocked%22_for_traffic_from_a_legitimate_connection

localhostx

Thanks for the answer.