Firewall rule for 67/68 on wan inet not working
-
I'm having an issue with my pfsense box.
The issue I'm having is that I'm losing the connection due to expiring dhcp leases. I have to manually renew the connection to reestablish my connection to my cable provider.I keep getting these
Blocked Jan 4 20:54:12 WAN 10.50.64.1:67 255.255.255.255:68I've added the rule to wan interface
IPv4 UDP * 67 - 68 * 67 - 68Yet it's still being blocked.
How can I fix this?
-
That is probably being blocked by "Block Private Networks" on the WAN interface, a custom rule won't override that.
-
That is probably being blocked by "Block Private Networks" on the WAN interface, a custom rule won't override that.
I have the modem bridged so pfsense takes the public facing ip.
Any harm unchecking it? -
Not really, you could uncheck that, then make an RFC1918 alias (10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16) and add a block rule under your pass rule for equivalent protection
-
Not really, you could uncheck that, then make an RFC1918 alias (10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16) and add a block rule under your pass rule for equivalent protection
Does this look correct?
edit yes I caught the 192/16 block, had a typo it's been corrected.
-
your udp 67-68 rule should be on top. Otherwise, yes (assuming the typo you already spotted has been fixed)
