Firewall rule suddenly bocking broadcasts

NOYB

Firewall URL alias on LAN interface after about a week starts blocking broadcast (255.255.255.255)

URL Alias containing https://www.Team-CYMRU.org/Services/Bogons/fullbogons-ipv4.txt
with private address space 192.168.0.0/16, 172.16.0.0/12, 10.0.0.0/8 removed.

LAN Rule
src: any : any
dst: Bogons_IPv4 : any
action: Block & Log

Had been working fine for months.  Now after about a week of uptime it starts  blocking src: 192.168.2.9 dst: 255.255.255.255.

Reboot about a week ago fixed it, but now it's happening again.
Any ideas why the rule would suddenly start blocking broadcasts?
Any ideas for troubleshooting?

Thanks

doktornotor

Ugh. There's /etc/bogons{,v6} integrated with pfSense updating and the private space removed. You can use that with pfBNG.

Ideas for troubleshooting: Fix it yourself, noone knowns what you did.

johnpoz

my question would be why would you have bogon on a lan interface??  How many hits do get with your clients trying to go to bogon networks - that don't route on the internet anyway.. So how exactly would they get anywhere?  Only if they were on your isp would there be any chance of going to a bogon IP.

There really is not point to blocking those on lan interface..