Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Problem Removing States

    Scheduled Pinned Locked Moved Firewalling
    1 Posts 1 Posters 517 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      Rhongomiant
      last edited by

      Greetings,

      We have some devices that send a lot of traffic, syslog, flows, etc to devices behind our pfSense cluster. We have run in to an issue a few times where we change the IP of the device behind the pfSense cluster and we also change the firewall rule and the NAT rule, but the traffic does not get to the device. This is because the states already exist using the old IP, so easy enough deleted the states.

      So I enter the old IP of the device and click the kill button, but the states and they are not removed. I delete the states individually and they come back. They will not die.

      Then I enter the source IP, click the kill button and the states are gone and do not return using the old IP, now they are using the new IP.

      Is there a reason why I can't kill the states when they are looked up by the destination IP, but I can kill them when looked up by the source IP?

      I know that I can do it either way normally, could it be a timing issue in this case due to the number of connections and continuous traffic?

      Thanks,

      Rhongomiant

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.