Hanging LAN interface - Proxmox 3.2.1 and KVM Pfsense 2.2.1
-
Good day, friends.
System Configuration
Pfsense 2.2.1-RELEASE (i386)
built on Fri Mar 13 08:16:53 CDT 2015
FreeBSD 10.1-RELEASE-p6
Proxmox 3.2-1 1933730bSo Pfsense works in a single KVM.
There are two NIC, ISP delivers externel IP with DHCP server (static IP - M.A.C address).So the network config (/etc/network/interfaces) (Proxmox):
# network interface settings auto lo iface lo inet loopback iface eth0 inet manual iface eth1 inet manual auto vmbr0 iface vmbr0 inet manual bridge_ports eth0 bridge_stp off bridge_fd 0 auto vmbr1 iface vmbr1 inet static address 192.168.0.7 netmask 255.255.255.0 # gateway 192.168.0.1 bridge_ports eth1 bridge_stp off bridge_fd 0
The network config (Pfsense) - ifconfig -a:
em0: flags=8843 <up,broadcast,running,simplex,multicast>metric 0 mtu 1500 options=209b <rxcsum,txcsum,vlan_mtu,vlan_hwtagging,vlan_hwcsum,wol_magic>ether 9e:32:a0:9c:7c:91 inet6 fe80::9c32:a0ff:fe9c:7c91%em0 prefixlen 64 scopeid 0x1 inet 188.113.156.235 netmask 0xffffff00 broadcast 188.113.156.255 nd6 options=21 <performnud,auto_linklocal>media: Ethernet autoselect (1000baseT <full-duplex>) status: active em1: flags=88843 <up,broadcast,running,simplex,multicast,staticarp>metric 0 mtu 1500 options=209b <rxcsum,txcsum,vlan_mtu,vlan_hwtagging,vlan_hwcsum,wol_magic>ether 0e:0e:5f:44:9c:a1 inet6 fe80::c0e:5fff:fe44:9ca1%em1 prefixlen 64 scopeid 0x2 inet 192.168.0.1 netmask 0xffffff00 broadcast 192.168.0.255 nd6 options=21 <performnud,auto_linklocal>media: Ethernet autoselect (1000baseT <full-duplex>) status: active pflog0: flags=100 <promisc>metric 0 mtu 33172 pfsync0: flags=0<> metric 0 mtu 1500 syncpeer: 224.0.0.240 maxupd: 128 defer: on syncok: 1 lo0: flags=8049 <up,loopback,running,multicast>metric 0 mtu 16384 options=600003 <rxcsum,txcsum,rxcsum_ipv6,txcsum_ipv6>inet 127.0.0.1 netmask 0xff000000 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5 nd6 options=21 <performnud,auto_linklocal>enc0: flags=0<> metric 0 mtu 1536 nd6 options=21 <performnud,auto_linklocal>pptpd0: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500 nd6 options=21 <performnud,auto_linklocal>pptpd1: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500 nd6 options=21 <performnud,auto_linklocal>pptpd2: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500 nd6 options=21 <performnud,auto_linklocal>pptpd3: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500 nd6 options=21 <performnud,auto_linklocal>pptpd4: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500 nd6 options=21 <performnud,auto_linklocal>pptpd5: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500 nd6 options=21 <performnud,auto_linklocal>pptpd6: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500 nd6 options=21 <performnud,auto_linklocal>pptpd7: flags=8890 <pointopoint,noarp,simplex,multicast>metric 0 mtu 1500 nd6 options=21 <performnud,auto_linklocal></performnud,auto_linklocal></pointopoint,noarp,simplex,multicast></performnud,auto_linklocal></pointopoint,noarp,simplex,multicast></performnud,auto_linklocal></pointopoint,noarp,simplex,multicast></performnud,auto_linklocal></pointopoint,noarp,simplex,multicast></performnud,auto_linklocal></pointopoint,noarp,simplex,multicast></performnud,auto_linklocal></pointopoint,noarp,simplex,multicast></performnud,auto_linklocal></pointopoint,noarp,simplex,multicast></performnud,auto_linklocal></pointopoint,noarp,simplex,multicast></performnud,auto_linklocal></performnud,auto_linklocal></rxcsum,txcsum,rxcsum_ipv6,txcsum_ipv6></up,loopback,running,multicast></promisc></full-duplex></performnud,auto_linklocal></rxcsum,txcsum,vlan_mtu,vlan_hwtagging,vlan_hwcsum,wol_magic></up,broadcast,running,simplex,multicast,staticarp></full-duplex></performnud,auto_linklocal></rxcsum,txcsum,vlan_mtu,vlan_hwtagging,vlan_hwcsum,wol_magic></up,broadcast,running,simplex,multicast>
Where eth0/vmb0 is WLAN interface, eth1/vmb1 is LAN interface.
From time to time Pfsense LAN interfase doesn't respond and there are no causes, no extraordinary errors, i base on logs of both the systems.
More than that it don't want up after first reboot
I use the following link to try fix hanging (http://forum.proxmox.com/threads/202…p-solved-2-NIC), but it doesn't work for me.There is a log fragment before the pfesense hung.
Before
2015-07-04 15:19:13 Cron.Info pfSense.localdomain Jul 4 16:20:00 /usr/sbin/cron[27244]: (root) CMD (/usr/bin/perl /usr/pbi/lightsquid-i386/local/www/lightsquid/lightparser.pl today) 2015-07-04 15:19:13 Cron.Info pfSense.localdomain Jul 4 16:20:00 /usr/sbin/cron[27565]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:19:13 Cron.Info pfSense.localdomain Jul 4 16:20:00 cron[27026]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:19:31 Local7.Info pfSense.localdomain Jul 4 16:20:18 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:19:31 Local7.Info pfSense.localdomain Jul 4 16:20:18 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:20:13 Cron.Info pfSense.localdomain Jul 4 16:21:00 /usr/sbin/cron[50951]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:20:13 Cron.Info pfSense.localdomain Jul 4 16:21:00 cron[50885]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:20:29 Local0.Info pfSense.localdomain Jul 4 16:21:16 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:20:29 Local0.Info pfSense.localdomain Jul 4 16:21:16 filterlog: 7,16777216,,1000000105,em0,match,block,in,6,0x00,0x00000,1,Options,0,32,101:80a:4d0:2916:c8a7:1c97:9ca1:d43d,ff02::1,HBH,RTALERT,0x0000,PAD1,PAD1, 2015-07-04 15:20:36 Local7.Info pfSense.localdomain Jul 4 16:21:23 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:20:36 Local7.Info pfSense.localdomain Jul 4 16:21:23 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:20:44 Local0.Info pfSense.localdomain Jul 4 16:21:31 filterlog: 93,16777216,,1429845913,em1,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,192.168.0.202,all-systems.mcast.net,datalength=8 2015-07-04 15:21:13 Cron.Info pfSense.localdomain Jul 4 16:22:00 /usr/sbin/cron[74669]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:21:13 Cron.Info pfSense.localdomain Jul 4 16:22:00 cron[74344]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:21:27 Local7.Info pfSense.localdomain Jul 4 16:22:14 dhcpd: DHCPINFORM from PRAZDNIK via em1 2015-07-04 15:21:27 Local7.Info pfSense.localdomain Jul 4 16:22:14 dhcpd: DHCPACK to PRAZDNIK (e0:69:95:46:3c:c1) via em1 2015-07-04 15:21:38 Local7.Error pfSense.localdomain Jul 4 16:22:25 dhcpd: DHCPDISCOVER from 00:08:ca:ed:b0:ec via em1: network 192.168.0.0/24: no free leases 2015-07-04 15:21:41 Local7.Info pfSense.localdomain Jul 4 16:22:28 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:21:41 Local7.Info pfSense.localdomain Jul 4 16:22:28 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:21:51 Local0.Info pfSense.localdomain Jul 4 16:22:38 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,51,38196,0,none,6,tcp,44,72.167.184.27,188.113.156.235,80,3640,0,SA,181894581,238610791,16384,,mss 2015-07-04 15:22:01 Local0.Info pfSense.localdomain Jul 4 16:22:47 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,54,35155,0,none,6,tcp,44,166.62.54.120,188.113.156.235,80,3640,0,SA,1015301421,238610791,16384,,mss 2015-07-04 15:22:13 Cron.Info pfSense.localdomain Jul 4 16:23:00 /usr/sbin/cron[160]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:22:13 Cron.Info pfSense.localdomain Jul 4 16:23:00 cron[99721]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:22:34 Local0.Info pfSense.localdomain Jul 4 16:23:20 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:22:34 Local0.Info pfSense.localdomain Jul 4 16:23:20 filterlog: 7,16777216,,1000000105,em0,match,block,in,6,0x00,0x00000,1,Options,0,32,7506:f0f2:bc44:19fe:e0e:5f44:9ca1:eca8,ff02::1,HBH,RTALERT,0x0000,PAD1,PAD1, 2015-07-04 15:22:37 Local7.Error pfSense.localdomain Jul 4 16:23:24 dhcpd: DHCPDISCOVER from 00:08:ca:ed:b0:ec via em1: network 192.168.0.0/24: no free leases 2015-07-04 15:22:47 Local7.Info pfSense.localdomain Jul 4 16:23:34 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:22:47 Local7.Info pfSense.localdomain Jul 4 16:23:34 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:22:50 Local0.Info pfSense.localdomain Jul 4 16:23:37 filterlog: 93,16777216,,1429845913,em1,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,192.168.0.202,all-systems.mcast.net,datalength=8 2015-07-04 15:23:13 Cron.Info pfSense.localdomain Jul 4 16:24:00 /usr/sbin/cron[26008]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:23:13 Cron.Info pfSense.localdomain Jul 4 16:24:00 cron[25704]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:24:13 Cron.Info pfSense.localdomain Jul 4 16:25:00 /usr/sbin/cron[49837]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:24:13 Cron.Info pfSense.localdomain Jul 4 16:25:00 cron[49803]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:24:39 Local0.Info pfSense.localdomain Jul 4 16:25:26 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:24:39 Local0.Info pfSense.localdomain Jul 4 16:25:26 filterlog: 7,16777216,,1000000105,em0,match,block,in,6,0x00,0x00000,1,Options,0,32,3706:888c:5d9e:8625:e0e:5f44:9ca1:eca8,ff02::1,HBH,RTALERT,0x0000,PAD1,PAD1, 2015-07-04 15:24:54 Local0.Info pfSense.localdomain Jul 4 16:25:41 filterlog: 93,16777216,,1429845913,em1,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,192.168.0.202,all-systems.mcast.net,datalength=8 2015-07-04 15:25:12 Cron.Info pfSense.localdomain Jul 4 16:26:00 /usr/sbin/cron[72838]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:25:12 Cron.Info pfSense.localdomain Jul 4 16:26:00 cron[72588]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:26:12 Cron.Info pfSense.localdomain Jul 4 16:27:00 /usr/sbin/cron[94335]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:26:12 Cron.Info pfSense.localdomain Jul 4 16:27:00 cron[94179]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:26:22 Local0.Info pfSense.localdomain Jul 4 16:27:09 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,51,1569,0,none,6,tcp,44,72.167.184.27,188.113.156.235,80,3640,0,SA,251815104,238610791,16384,,mss 2015-07-04 15:26:27 Local0.Info pfSense.localdomain Jul 4 16:27:14 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,54,18625,0,none,6,tcp,44,104.238.77.162,188.113.156.235,80,3640,0,SA,577035867,238610791,16384,,mss 2015-07-04 15:26:31 Local0.Info pfSense.localdomain Jul 4 16:27:18 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,54,2904,0,none,6,tcp,44,166.62.54.120,188.113.156.235,80,3640,0,SA,915529966,238610791,16384,,mss 2015-07-04 15:26:36 Local0.Info pfSense.localdomain Jul 4 16:27:23 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,54,52899,0,none,6,tcp,44,104.238.95.134,188.113.156.235,80,3640,0,SA,521640118,238610791,16384,,mss 2015-07-04 15:26:44 Local0.Info pfSense.localdomain Jul 4 16:27:31 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:26:44 Local0.Info pfSense.localdomain Jul 4 16:27:31 filterlog: 7,16777216,,1000000105,em0,match,block,in,6,0x00,0x00000,1,Options,0,32,1f:ce72:bbc2:bc71:e0e:5f44:9ca1:eca8,ff02::1,HBH,RTALERT,0x0000,PAD1,PAD1, 2015-07-04 15:26:45 Local0.Info pfSense.localdomain Jul 4 16:27:32 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,51,31691,0,none,6,tcp,44,72.167.184.27,188.113.156.235,80,3640,0,SA,1311952132,238610791,16384,,mss 2015-07-04 15:26:59 Local0.Info pfSense.localdomain Jul 4 16:27:46 filterlog: 93,16777216,,1429845913,em1,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,192.168.0.202,all-systems.mcast.net,datalength=8 2015-07-04 15:27:12 Cron.Info pfSense.localdomain Jul 4 16:28:00 /usr/sbin/cron[23259]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:27:13 Cron.Info pfSense.localdomain Jul 4 16:28:00 cron[23174]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:27:54 Local7.Info pfSense.localdomain Jul 4 16:28:41 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:27:54 Local7.Info pfSense.localdomain Jul 4 16:28:41 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:28:12 Cron.Info pfSense.localdomain Jul 4 16:29:00 /usr/sbin/cron[46905]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:28:13 Cron.Info pfSense.localdomain Jul 4 16:29:00 cron[46716]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:28:23 Auth.Emerg pfSense.localdomain Jul 4 16:29:10 php-fpm[27846]: /index.php: Successful login for user 'admin' from: h091147024233.ys.dsl.sakhalin.ru 2015-07-04 15:28:35 Local7.Error pfSense.localdomain Jul 4 16:29:22 dhcpd: DHCPDISCOVER from 00:08:ca:ed:b0:ec via em1: network 192.168.0.0/24: no free leases 2015-07-04 15:28:49 Local0.Info pfSense.localdomain Jul 4 16:29:36 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:28:49 Local0.Info pfSense.localdomain Jul 4 16:29:36 filterlog: 7,16777216,,1000000105,em0,match,block,in,6,0x00,0x00000,1,Options,0,32,101:51a:e511:cb80:e512:1090:e511:aba0,ff02::1,HBH,RTALERT,0x0000,PAD1,PAD1, 2015-07-04 15:28:52 Local0.Info pfSense.localdomain Jul 4 16:29:39 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,51,11324,0,none,6,tcp,44,72.167.184.27,188.113.156.235,80,3640,0,SA,1983232312,238610791,16384,,mss 2015-07-04 15:28:57 Local0.Info pfSense.localdomain Jul 4 16:29:44 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,54,5778,0,none,6,tcp,44,104.238.77.162,188.113.156.235,80,3640,0,SA,325037476,238610791,16384,,mss 2015-07-04 15:29:02 Local0.Info pfSense.localdomain Jul 4 16:29:49 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,54,62106,0,none,6,tcp,44,166.62.54.120,188.113.156.235,80,3640,0,SA,314505730,238610791,16384,,mss 2015-07-04 15:29:04 Local0.Info pfSense.localdomain Jul 4 16:29:51 filterlog: 93,16777216,,1429845913,em1,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,192.168.0.202,all-systems.mcast.net,datalength=8 2015-07-04 15:29:06 Local0.Info pfSense.localdomain Jul 4 16:29:53 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,54,50300,0,none,6,tcp,44,104.238.95.134,188.113.156.235,80,3640,0,SA,618835199,238610791,16384,,mss 2015-07-04 15:29:10 Local0.Info pfSense.localdomain Jul 4 16:29:57 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,54,57711,0,none,6,tcp,44,104.238.95.134,188.113.156.235,80,3640,0,SA,1958291814,238610791,16384,,mss 2015-07-04 15:29:12 Cron.Info pfSense.localdomain Jul 4 16:30:00 /usr/sbin/cron[92942]: (root) CMD (/usr/bin/perl /usr/pbi/lightsquid-i386/local/www/lightsquid/lightparser.pl today) 2015-07-04 15:29:12 Cron.Info pfSense.localdomain Jul 4 16:30:00 /usr/sbin/cron[93260]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:29:12 Cron.Info pfSense.localdomain Jul 4 16:30:00 /usr/sbin/cron[93496]: (root) CMD (/usr/local/pkg/swapstate_check.php) 2015-07-04 15:29:13 Cron.Info pfSense.localdomain Jul 4 16:30:00 cron[92729]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:29:16 Local0.Info pfSense.localdomain Jul 4 16:30:03 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,51,48088,0,none,6,tcp,44,72.167.184.27,188.113.156.235,80,3640,0,SA,1972250793,238610791,16384,,mss 2015-07-04 15:29:23 Local7.Info pfSense.localdomain Jul 4 16:30:10 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:29:23 Local7.Info pfSense.localdomain Jul 4 16:30:10 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:29:33 Local7.Error pfSense.localdomain Jul 4 16:30:20 dhcpd: DHCPDISCOVER from 00:08:ca:ed:b0:ec via em1: network 192.168.0.0/24: no free leases 2015-07-04 15:30:12 Cron.Info pfSense.localdomain Jul 4 16:31:00 /usr/sbin/cron[18195]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:30:13 Cron.Info pfSense.localdomain Jul 4 16:31:00 cron[17930]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:30:19 Auth.Info pfSense.localdomain Jul 4 16:31:06 sshd[17494]: Accepted keyboard-interactive/pam for root from 217.118.64.48 port 60529 ssh2 2015-07-04 15:30:28 Local7.Info pfSense.localdomain Jul 4 16:31:15 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:30:28 Local7.Info pfSense.localdomain Jul 4 16:31:15 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:30:54 Local0.Info pfSense.localdomain Jul 4 16:31:41 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:30:54 Local0.Info pfSense.localdomain Jul 4 16:31:41 filterlog: 7,16777216,,1000000105,em0,match,block,in,6,0x00,0x00000,1,Options,0,32,7506:bea2:bc44:19fe:e0e:5f44:9ca1:eca8,ff02::1,HBH,RTALERT,0x0000,PAD1,PAD1, 2015-07-04 15:30:55 Local0.Info pfSense.localdomain Jul 4 16:31:42 filterlog: 5,16777216,,1000000103,em0,match,block,in,4,0x0,,55,50605,0,none,6,tcp,44,ns502686.ip-142-4-212.net,188.113.156.235,27019,54021,0,SA,1001387050,3377987585,16384,,mss 2015-07-04 15:31:09 Local0.Info pfSense.localdomain Jul 4 16:31:56 filterlog: 93,16777216,,1429845913,em1,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,192.168.0.202,all-systems.mcast.net,datalength=8 2015-07-04 15:31:10 User.Error pfSense.localdomain Jul 4 16:31:57 apinger: ALARM: WANGW(gateway.z28.ysk.scts.tv) *** delay *** 2015-07-04 15:31:12 Cron.Info pfSense.localdomain Jul 4 16:32:00 /usr/sbin/cron[44951]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:31:12 Cron.Info pfSense.localdomain Jul 4 16:32:00 cron[44740]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:31:13 User.Error pfSense.localdomain Jul 4 16:32:00 apinger: alarm canceled: WANGW(gateway.z28.ysk.scts.tv) *** delay *** 2015-07-04 15:31:20 User.Notice pfSense.localdomain Jul 4 16:32:07 check_reload_status: updating dyndns WANGW 2015-07-04 15:31:20 User.Notice pfSense.localdomain Jul 4 16:32:07 check_reload_status: Restarting ipsec tunnels 2015-07-04 15:31:20 User.Notice pfSense.localdomain Jul 4 16:32:07 check_reload_status: Restarting OpenVPN tunnels/interfaces 2015-07-04 15:31:20 User.Notice pfSense.localdomain Jul 4 16:32:07 check_reload_status: Reloading filter 2015-07-04 15:31:21 Daemon.Error pfSense.localdomain Jul 4 16:32:08 php-fpm[95760]: /rc.openvpn: OpenVPN: One or more OpenVPN tunnel endpoints may have changed its IP. Reloading endpoints that may use WANGW. 2015-07-04 15:31:21 Kernel.Critical pfSense.localdomain Jul 4 16:32:08 kernel: Bump sched buckets to 256 (was 0) 2015-07-04 15:31:21 Kernel.Critical pfSense.localdomain Jul 4 16:32:08 kernel: Bump sched buckets to 256 (was 0) 2015-07-04 15:31:21 Daemon.Error pfSense.localdomain Jul 4 16:32:08 php-fpm[95760]: /rc.filter_configure_sync: Sending HUP signal to 41652 2015-07-04 15:31:23 User.Notice pfSense.localdomain Jul 4 16:32:10 check_reload_status: updating dyndns WANGW 2015-07-04 15:31:23 User.Notice pfSense.localdomain Jul 4 16:32:10 check_reload_status: Restarting ipsec tunnels 2015-07-04 15:31:23 User.Notice pfSense.localdomain Jul 4 16:32:10 check_reload_status: Restarting OpenVPN tunnels/interfaces 2015-07-04 15:31:23 User.Notice pfSense.localdomain Jul 4 16:32:10 check_reload_status: Reloading filter 2015-07-04 15:31:24 Daemon.Error pfSense.localdomain Jul 4 16:32:11 php-fpm[95760]: /rc.openvpn: OpenVPN: One or more OpenVPN tunnel endpoints may have changed its IP. Reloading endpoints that may use WANGW. 2015-07-04 15:31:24 Kernel.Critical pfSense.localdomain Jul 4 16:32:11 kernel: Bump sched buckets to 256 (was 0) 2015-07-04 15:31:24 Kernel.Critical pfSense.localdomain Jul 4 16:32:11 kernel: Bump sched buckets to 256 (was 0) 2015-07-04 15:31:24 Daemon.Error pfSense.localdomain Jul 4 16:32:12 php-fpm[95760]: /rc.filter_configure_sync: Sending HUP signal to 41652 2015-07-04 15:31:30 Local7.Info pfSense.localdomain Jul 4 16:32:17 dhcpd: DHCPINFORM from PRAZDNIK via em1 2015-07-04 15:31:30 Local7.Info pfSense.localdomain Jul 4 16:32:17 dhcpd: DHCPACK to PRAZDNIK (e0:69:95:46:3c:c1) via em1 2015-07-04 15:31:33 Local7.Info pfSense.localdomain Jul 4 16:32:20 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:31:33 Local7.Info pfSense.localdomain Jul 4 16:32:20 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:31:36 User.Warning pfSense.localdomain Jul 4 16:32:23 ipfw-classifyd: Reloading config... 2015-07-04 15:31:36 User.Notice pfSense.localdomain Jul 4 16:32:23 ipfw-classifyd: Loaded Protocol: bittorrent (rule action block) 2015-07-04 15:32:01 Auth.Info pfSense.localdomain Jul 4 16:32:48 sshd[57954]: Accepted keyboard-interactive/pam for root from 217.118.64.48 port 60532 ssh2 2015-07-04 15:32:12 Cron.Info pfSense.localdomain Jul 4 16:33:00 /usr/sbin/cron[85114]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:32:12 Cron.Info pfSense.localdomain Jul 4 16:33:00 cron[84820]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:32:37 Local7.Info pfSense.localdomain Jul 4 16:33:24 dhcpd: DHCPREQUEST for OPERATOR-BL1 from 00:13:d4:c6:62:cd via em1 2015-07-04 15:32:37 Local7.Info pfSense.localdomain Jul 4 16:33:24 dhcpd: DHCPACK on OPERATOR-BL1 to 00:13:d4:c6:62:cd via em1 2015-07-04 15:32:38 Local7.Info pfSense.localdomain Jul 4 16:33:25 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:32:38 Local7.Info pfSense.localdomain Jul 4 16:33:25 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:32:59 Local0.Info pfSense.localdomain Jul 4 16:33:46 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:32:59 Local0.Info pfSense.localdomain Jul 4 16:33:46 filterlog: 7,16777216,,1000000105,em0,match,block,in,6,0x00,0x00000,1,Options,0,32,101:512:e979:588a:e0e:5f44:9ca1:eca8,ff02::1,HBH,RTALERT,0x0000,PAD1,PAD1, 2015-07-04 15:33:07 Local7.Info pfSense.localdomain Jul 4 16:33:54 dhcpd: DHCPREQUEST for OPERATOR-BL1 from 00:13:d4:c6:62:cd via em1 2015-07-04 15:33:07 Local7.Info pfSense.localdomain Jul 4 16:33:54 dhcpd: DHCPACK on OPERATOR-BL1 to 00:13:d4:c6:62:cd via em1 2015-07-04 15:33:13 Cron.Info pfSense.localdomain Jul 4 16:34:00 /usr/sbin/cron[11792]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:33:13 Cron.Info pfSense.localdomain Jul 4 16:34:00 cron[11781]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:33:14 Local0.Info pfSense.localdomain Jul 4 16:34:01 filterlog: 93,16777216,,1429845913,em1,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,192.168.0.202,all-systems.mcast.net,datalength=8 2015-07-04 15:34:13 Cron.Info pfSense.localdomain Jul 4 16:35:00 /usr/sbin/cron[38026]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:34:13 Cron.Info pfSense.localdomain Jul 4 16:35:00 cron[37887]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:34:16 Auth.Info pfSense.localdomain Jul 4 16:35:03 sshd[37333]: Invalid user qxF01y2ol* from 217.118.64.48 2015-07-04 15:34:16 Auth.Info pfSense.localdomain Jul 4 16:35:03 sshd[37333]: input_userauth_request: invalid user qxF01y2ol* [preauth] 2015-07-04 15:34:16 Auth.Info pfSense.localdomain Jul 4 16:35:03 sshd[37333]: Postponed keyboard-interactive for invalid user qxF01y2ol* from 217.118.64.48 port 60534 ssh2 [preauth] 2015-07-04 15:34:30 Auth.Info pfSense.localdomain Jul 4 16:35:17 sshd[37333]: Connection closed by 217.118.64.48 [preauth] 2015-07-04 15:35:04 Local0.Info pfSense.localdomain Jul 4 16:35:51 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:35:04 Local0.Info pfSense.localdomain Jul 4 16:35:51 filterlog: 7,16777216,,1000000105,em0,match,block,in,6,0x00,0x00000,1,Options,0,32,0:d:600:0:e0e:5f44:9ca1:eca8,ff02::1,HBH,RTALERT,0x0000,PAD1,PAD1, 2015-07-04 15:35:05 Local7.Info pfSense.localdomain Jul 4 16:35:53 dhcpd: DHCPREQUEST for NPID1F259 from 2c:59:e5:d1:f2:59 via em1 2015-07-04 15:35:05 Local7.Info pfSense.localdomain Jul 4 16:35:53 dhcpd: DHCPACK on NPID1F259 to 2c:59:e5:d1:f2:59 via em1 2015-07-04 15:35:06 Auth.Info pfSense.localdomain Jul 4 16:35:53 sshd[40836]: Accepted keyboard-interactive/pam for root from 217.118.64.48 port 60535 ssh2 2015-07-04 15:35:13 Cron.Info pfSense.localdomain Jul 4 16:36:00 /usr/sbin/cron[67241]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:35:13 Cron.Info pfSense.localdomain Jul 4 16:36:00 cron[66948]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:35:19 Local0.Info pfSense.localdomain Jul 4 16:36:06 filterlog: 93,16777216,,1429845913,em1,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,192.168.0.202,all-systems.mcast.net,datalength=8 2015-07-04 15:35:24 Local7.Error pfSense.localdomain Jul 4 16:36:11 dhcpd: DHCPDISCOVER from 00:08:ca:ed:b0:ec via em1: network 192.168.0.0/24: no free leases 2015-07-04 15:36:13 Cron.Info pfSense.localdomain Jul 4 16:37:00 /usr/sbin/cron[91607]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:36:13 Cron.Info pfSense.localdomain Jul 4 16:37:00 cron[91515]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:36:23 Local7.Error pfSense.localdomain Jul 4 16:37:10 dhcpd: DHCPDISCOVER from 00:08:ca:ed:b0:ec via em1: network 192.168.0.0/24: no free leases 2015-07-04 15:37:09 Local0.Info pfSense.localdomain Jul 4 16:37:56 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:37:09 Local0.Info pfSense.localdomain Jul 4 16:37:56 filterlog: 7,16777216,,1000000105,em0,match,block,in,6,0x00,0x00000,1,Options,0,32,101:50a:46d4:9f41:e0e:5f44:9ca1:eca8,ff02::1,HBH,RTALERT,0x0000,PAD1,PAD1, 2015-07-04 15:37:13 Cron.Info pfSense.localdomain Jul 4 16:38:00 /usr/sbin/cron[14901]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:37:13 Cron.Info pfSense.localdomain Jul 4 16:38:00 cron[14585]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:37:24 Local0.Info pfSense.localdomain Jul 4 16:38:11 filterlog: 93,16777216,,1429845913,em1,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,192.168.0.202,all-systems.mcast.net,datalength=8 2015-07-04 15:37:46 Daemon.Warning pfSense.localdomain Jul 4 16:38:33 miniupnpd[92079]: SSDP packet sender 151.80.99.219:57953 not from a LAN, ignoring 2015-07-04 15:37:50 User.Error pfSense.localdomain Jul 4 16:38:37 apinger: ALARM: WANGW(gateway.z28.ysk.scts.tv) *** delay *** 2015-07-04 15:37:54 Local7.Info pfSense.localdomain Jul 4 16:38:41 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:37:54 Local7.Info pfSense.localdomain Jul 4 16:38:41 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:37:54 User.Error pfSense.localdomain Jul 4 16:38:41 apinger: alarm canceled: WANGW(gateway.z28.ysk.scts.tv) *** delay *** 2015-07-04 15:38:00 User.Notice pfSense.localdomain Jul 4 16:38:47 check_reload_status: updating dyndns WANGW 2015-07-04 15:38:00 User.Notice pfSense.localdomain Jul 4 16:38:47 check_reload_status: Restarting ipsec tunnels 2015-07-04 15:38:00 User.Notice pfSense.localdomain Jul 4 16:38:47 check_reload_status: Restarting OpenVPN tunnels/interfaces 2015-07-04 15:38:00 User.Notice pfSense.localdomain Jul 4 16:38:47 check_reload_status: Reloading filter 2015-07-04 15:38:01 Daemon.Error pfSense.localdomain Jul 4 16:38:48 php-fpm[95760]: /rc.openvpn: OpenVPN: One or more OpenVPN tunnel endpoints may have changed its IP. Reloading endpoints that may use WANGW. 2015-07-04 15:38:01 Kernel.Critical pfSense.localdomain Jul 4 16:38:48 kernel: Bump sched buckets to 256 (was 0) 2015-07-04 15:38:01 Kernel.Critical pfSense.localdomain Jul 4 16:38:48 kernel: Bump sched buckets to 256 (was 0) 2015-07-04 15:38:01 Daemon.Error pfSense.localdomain Jul 4 16:38:48 php-fpm[95760]: /rc.filter_configure_sync: Sending HUP signal to 41652 2015-07-04 15:38:04 User.Notice pfSense.localdomain Jul 4 16:38:51 check_reload_status: updating dyndns WANGW 2015-07-04 15:38:04 User.Notice pfSense.localdomain Jul 4 16:38:51 check_reload_status: Restarting ipsec tunnels 2015-07-04 15:38:04 User.Notice pfSense.localdomain Jul 4 16:38:51 check_reload_status: Restarting OpenVPN tunnels/interfaces 2015-07-04 15:38:04 User.Notice pfSense.localdomain Jul 4 16:38:51 check_reload_status: Reloading filter 2015-07-04 15:38:05 Daemon.Error pfSense.localdomain Jul 4 16:38:52 php-fpm[95760]: /rc.openvpn: OpenVPN: One or more OpenVPN tunnel endpoints may have changed its IP. Reloading endpoints that may use WANGW. 2015-07-04 15:38:05 Kernel.Critical pfSense.localdomain Jul 4 16:38:52 kernel: Bump sched buckets to 256 (was 0) 2015-07-04 15:38:05 Kernel.Critical pfSense.localdomain Jul 4 16:38:52 kernel: Bump sched buckets to 256 (was 0) 2015-07-04 15:38:06 Daemon.Error pfSense.localdomain Jul 4 16:38:53 php-fpm[95760]: /rc.filter_configure_sync: Sending HUP signal to 41652 2015-07-04 15:38:06 User.Warning pfSense.localdomain Jul 4 16:38:53 ipfw-classifyd: Reloading config... 2015-07-04 15:38:06 User.Notice pfSense.localdomain Jul 4 16:38:53 ipfw-classifyd: Loaded Protocol: bittorrent (rule action block) 2015-07-04 15:38:12 Cron.Info pfSense.localdomain Jul 4 16:39:00 /usr/sbin/cron[50018]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:38:12 Cron.Info pfSense.localdomain Jul 4 16:39:00 cron[49952]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:39:12 Cron.Info pfSense.localdomain Jul 4 16:40:00 /usr/sbin/cron[77110]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:39:12 Cron.Info pfSense.localdomain Jul 4 16:40:00 /usr/sbin/cron[76777]: (root) CMD (/usr/bin/perl /usr/pbi/lightsquid-i386/local/www/lightsquid/lightparser.pl today) 2015-07-04 15:39:12 Cron.Info pfSense.localdomain Jul 4 16:40:00 cron[76432]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:39:13 Local0.Info pfSense.localdomain Jul 4 16:40:00 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:39:13 Local0.Info pfSense.localdomain Jul 4 16:40:00 filterlog: 7,16777216,,1000000105,em0,match,block,in,6,0x00,0x00000,1,Options,0,32,7611:44fc:5bf1:e2c6:e0e:5f44:9ca1:eca8,ff02::1,HBH,RTALERT,0x0000,PAD1,PAD1, 2015-07-04 15:39:14 Local7.Info pfSense.localdomain Jul 4 16:40:01 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:39:14 Local7.Info pfSense.localdomain Jul 4 16:40:01 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:39:28 Local0.Info pfSense.localdomain Jul 4 16:40:15 filterlog: 93,16777216,,1429845913,em1,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,192.168.0.202,all-systems.mcast.net,datalength=8 2015-07-04 15:40:13 Cron.Info pfSense.localdomain Jul 4 16:41:00 /usr/sbin/cron[115]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:40:13 Cron.Info pfSense.localdomain Jul 4 16:41:00 cron[99956]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:40:19 Local7.Info pfSense.localdomain Jul 4 16:41:06 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:40:19 Local7.Info pfSense.localdomain Jul 4 16:41:06 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:41:12 Cron.Info pfSense.localdomain Jul 4 16:42:00 /usr/sbin/cron[23570]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:41:12 Cron.Info pfSense.localdomain Jul 4 16:42:00 cron[23262]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:41:18 Local0.Info pfSense.localdomain Jul 4 16:42:05 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:41:18 Local0.Info pfSense.localdomain Jul 4 16:42:05 filterlog: 7,16777216,,1000000105,em0,match,block,in,6,0x00,0x00000,1,Options,0,32,3606:3d5e:4a7d:e878:e0e:5f44:9ca1:eca8,ff02::1,HBH,RTALERT,0x0000,PAD1,PAD1, 2015-07-04 15:41:24 Local7.Info pfSense.localdomain Jul 4 16:42:11 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:41:24 Local7.Info pfSense.localdomain Jul 4 16:42:11 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:41:32 Local7.Info pfSense.localdomain Jul 4 16:42:19 dhcpd: DHCPINFORM from PRAZDNIK via em1 2015-07-04 15:41:32 Local7.Info pfSense.localdomain Jul 4 16:42:19 dhcpd: DHCPACK to PRAZDNIK (e0:69:95:46:3c:c1) via em1 2015-07-04 15:41:33 Local0.Info pfSense.localdomain Jul 4 16:42:20 filterlog: 93,16777216,,1429845913,em1,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,192.168.0.202,all-systems.mcast.net,datalength=8 2015-07-04 15:42:08 Local7.Error pfSense.localdomain Jul 4 16:42:55 dhcpd: DHCPDISCOVER from 00:08:ca:ed:b0:ec via em1: network 192.168.0.0/24: no free leases 2015-07-04 15:42:12 Cron.Info pfSense.localdomain Jul 4 16:43:00 /usr/sbin/cron[47675]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:42:12 Cron.Info pfSense.localdomain Jul 4 16:43:00 cron[47658]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:42:29 Local7.Info pfSense.localdomain Jul 4 16:43:16 dhcpd: DHCPINFORM from GARAJ-SMETANINA via em1 2015-07-04 15:42:29 Local7.Info pfSense.localdomain Jul 4 16:43:16 dhcpd: DHCPACK to GARAJ-SMETANINA (38:60:77:f5:06:24) via em1 2015-07-04 15:43:08 Local7.Error pfSense.localdomain Jul 4 16:43:55 dhcpd: DHCPDISCOVER from 00:08:ca:ed:b0:ec via em1: network 192.168.0.0/24: no free leases 2015-07-04 15:43:12 Cron.Info pfSense.localdomain Jul 4 16:44:00 /usr/sbin/cron[74629]: (root) CMD (/usr/local/sbin/tolog.sh) 2015-07-04 15:43:13 Cron.Info pfSense.localdomain Jul 4 16:44:00 cron[74403]: (root) MAIL (mailed 22 bytes of output but got status 0x0001 ) 2015-07-04 15:43:23 Local0.Info pfSense.localdomain Jul 4 16:44:11 filterlog: 83,16777216,,1427951034,em0,ip-option,pass,in,4,0xc0,,1,0,0,DF,2,igmp,32,0.0.0.0,all-systems.mcast.net,datalength=8 2015-07-04 15:43:23 Local0.Info pfSense.localdomain Jul 4 16:44:11 filterlog:
I suppose there are wrong things in service ordering of proxmox or in pfsense firewall configurations.
Firewall rules pfctl -sr =>scrub on em0 all fragment reassemble scrub on em1 all fragment reassemble anchor "relayd/*" all anchor "openvpn/*" all anchor "ipsec/*" all block drop in log quick inet from 169.254.0.0/16 to any label "Block IPv4 link-local" block drop in log quick inet from any to 169.254.0.0/16 label "Block IPv4 link-local" block drop in log inet all label "Default deny rule IPv4" block drop out log inet all label "Default deny rule IPv4" block drop in log inet6 all label "Default deny rule IPv6" block drop out log inet6 all label "Default deny rule IPv6" pass quick inet6 proto ipv6-icmp all icmp6-type unreach keep state pass quick inet6 proto ipv6-icmp all icmp6-type toobig keep state pass quick inet6 proto ipv6-icmp all icmp6-type neighbrsol keep state pass quick inet6 proto ipv6-icmp all icmp6-type neighbradv keep state pass out quick inet6 proto ipv6-icmp from fe80::/10 to fe80::/10 icmp6-type echorep keep state pass out quick inet6 proto ipv6-icmp from fe80::/10 to fe80::/10 icmp6-type routersol keep state pass out quick inet6 proto ipv6-icmp from fe80::/10 to fe80::/10 icmp6-type routeradv keep state pass out quick inet6 proto ipv6-icmp from fe80::/10 to fe80::/10 icmp6-type neighbrsol keep state pass out quick inet6 proto ipv6-icmp from fe80::/10 to fe80::/10 icmp6-type neighbradv keep state pass out quick inet6 proto ipv6-icmp from fe80::/10 to ff02::/16 icmp6-type echorep keep state pass out quick inet6 proto ipv6-icmp from fe80::/10 to ff02::/16 icmp6-type routersol keep state pass out quick inet6 proto ipv6-icmp from fe80::/10 to ff02::/16 icmp6-type routeradv keep state pass out quick inet6 proto ipv6-icmp from fe80::/10 to ff02::/16 icmp6-type neighbrsol keep state pass out quick inet6 proto ipv6-icmp from fe80::/10 to ff02::/16 icmp6-type neighbradv keep state pass in quick inet6 proto ipv6-icmp from fe80::/10 to fe80::/10 icmp6-type echoreq keep state pass in quick inet6 proto ipv6-icmp from fe80::/10 to fe80::/10 icmp6-type routersol keep state pass in quick inet6 proto ipv6-icmp from fe80::/10 to fe80::/10 icmp6-type routeradv keep state pass in quick inet6 proto ipv6-icmp from fe80::/10 to fe80::/10 icmp6-type neighbrsol keep state pass in quick inet6 proto ipv6-icmp from fe80::/10 to fe80::/10 icmp6-type neighbradv keep state pass in quick inet6 proto ipv6-icmp from ff02::/16 to fe80::/10 icmp6-type echoreq keep state pass in quick inet6 proto ipv6-icmp from ff02::/16 to fe80::/10 icmp6-type routersol keep state pass in quick inet6 proto ipv6-icmp from ff02::/16 to fe80::/10 icmp6-type routeradv keep state pass in quick inet6 proto ipv6-icmp from ff02::/16 to fe80::/10 icmp6-type neighbrsol keep state pass in quick inet6 proto ipv6-icmp from ff02::/16 to fe80::/10 icmp6-type neighbradv keep state pass in quick inet6 proto ipv6-icmp from fe80::/10 to ff02::/16 icmp6-type echoreq keep state pass in quick inet6 proto ipv6-icmp from fe80::/10 to ff02::/16 icmp6-type routersol keep state pass in quick inet6 proto ipv6-icmp from fe80::/10 to ff02::/16 icmp6-type routeradv keep state pass in quick inet6 proto ipv6-icmp from fe80::/10 to ff02::/16 icmp6-type neighbrsol keep state pass in quick inet6 proto ipv6-icmp from fe80::/10 to ff02::/16 icmp6-type neighbradv keep state block drop log quick inet proto tcp from any port = 0 to any block drop log quick inet proto udp from any port = 0 to any block drop log quick inet proto tcp from any to any port = 0 block drop log quick inet proto udp from any to any port = 0 block drop log quick inet6 proto tcp from any port = 0 to any block drop log quick inet6 proto udp from any port = 0 to any block drop log quick inet6 proto tcp from any to any port = 0 block drop log quick inet6 proto udp from any to any port = 0 block drop log quick from <snort2c>to any label "Block snort2c hosts" block drop log quick from any to <snort2c>label "Block snort2c hosts" block drop in log quick proto tcp from <sshlockout>to (self) port = 8122 label "sshlockout" block drop in log quick proto tcp from <webconfiguratorlockout>to (self) port = https label "webConfiguratorlockout" block drop in log quick from <virusprot>to any label "virusprot overload table" block drop in log on ! em0 inet from 188.113.156.0/24 to any block drop in log inet from 188.113.156.235 to any block drop in log on em0 inet6 from fe80::9c32:a0ff:fe9c:7c91 to any pass in on em0 proto udp from any port = bootps to any port = bootpc keep state label "allow dhcp client out WAN" pass out on em0 proto udp from any port = bootpc to any port = bootps keep state label "allow dhcp client out WAN" block drop in log on ! em1 inet from 192.168.0.0/24 to any block drop in log inet from 192.168.0.1 to any block drop in log on em1 inet6 from fe80::c0e:5fff:fe44:9ca1 to any pass in quick on em1 inet proto udp from any port = bootpc to 255.255.255.255 port = bootps keep state label "allow access to DHCP server" pass in quick on em1 inet proto udp from any port = bootpc to 192.168.0.1 port = bootps keep state label "allow access to DHCP server" pass out quick on em1 inet proto udp from 192.168.0.1 port = bootps to any port = bootpc keep state label "allow access to DHCP server" pass in on lo0 inet all flags S/SA keep state label "pass IPv4 loopback" pass out on lo0 inet all flags S/SA keep state label "pass IPv4 loopback" pass in on lo0 inet6 all flags S/SA keep state label "pass IPv6 loopback" pass out on lo0 inet6 all flags S/SA keep state label "pass IPv6 loopback" pass out inet all flags S/SA keep state allow-opts label "let out anything IPv4 from firewall host itself" pass out inet6 all flags S/SA keep state allow-opts label "let out anything IPv6 from firewall host itself" pass out route-to (em0 188.113.156.1) inet from 188.113.156.235 to ! 188.113.156.0/24 flags S/SA keep state allow-opts label "let out anything from firewall host itself" pass in quick on em1 proto tcp from any to (em1) port = https flags S/SA keep state label "anti-lockout rule" pass in quick on em1 proto tcp from any to (em1) port = http flags S/SA keep state label "anti-lockout rule" pass in quick on em1 proto tcp from any to (em1) port = 8122 flags S/SA keep state label "anti-lockout rule" pass in on em0 inet proto tcp from any to 188.113.156.235 port = pptp flags S/SA modulate state label "allow pptpd 188.113.156.235" pass in on em0 proto gre all keep state label "allow gre pptpd" anchor "userrules/*" all pass on em0 inet proto tcp from any to any port = 8006 flags S/SA keep state label "USER_RULE" pass on em1 inet proto tcp from any to any port = 8006 flags S/SA keep state label "USER_RULE" pass in quick on openvpn all flags S/SA keep state label "USER_RULE: OpenVPN pfsense_openVPN_server wizard" pass in quick on pptp inet all flags S/SA keep state label "USER_RULE" pass in quick on em0 reply-to (em0 188.113.156.1) inet all flags S/SA keep state label "USER_RULE" pass in quick on em0 reply-to (em0 188.113.156.1) inet from 89.188.243.66 to 188.113.156.235 flags S/SA keep state label "USER_RULE: Easy Rule: Passed from Firewall Log View" pass in quick on em0 reply-to (em0 188.113.156.1) inet proto udp from any to 188.113.156.235 port = 8123 keep state label "USER_RULE: OpenVPN pfsense_openVPN_server wizard" pass in quick on em1 inet proto tcp from <yes>to 188.113.156.0/24 flags S/SA keep state label "USER_RULE: Group3 - speed unlimited" pass in quick on em1 inet proto udp from <yes>to 188.113.156.0/24 keep state label "USER_RULE: Group3 - speed unlimited" block drop in quick on em1 inet from <no>to 192.168.0.1 label "USER_RULE: Group2 - speed 0mb" pass in quick on em1 inet from <no>to any flags S/SA keep state label "USER_RULE" dnpipe(4, 3) pass in quick on em1 inet from <1MB> to ! (self) flags S/SA keep state label "USER_RULE: 1 mb" dnpipe(1, 2) pass in quick on em1 inet proto tcp from <1MB> to ! (self) flags S/SA keep state label "USER_RULE: 1mb" dnpipe(1, 2) pass in quick on em1 inet proto udp from <1MB> to ! (self) keep state label "USER_RULE: 1mb" dnpipe(1, 2) pass in quick on em1 inet all flags S/SA keep state label "USER_RULE" pass in quick on em1 inet from 192.168.0.0/24 to any flags S/SA keep state label "USER_RULE: Default allow LAN to any rule" anchor "tftp-proxy/*" all anchor "miniupnpd" all pass in quick on em1 proto tcp from any to ! (em1) port = http flags S/SA keep state pass in quick on em1 proto tcp from any to ! (em1) port = 3128 flags S/SA keep state pass in quick on pptp inet proto tcp from any to ! 127.0.0.1 port = 3128 flags S/SA keep state</no></no></yes></yes></virusprot></webconfiguratorlockout></sshlockout></snort2c></snort2c> ``` I have no ideas to reslove the bug and I will be killed with my office soon Thanks for response!