Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    What does this block mean?

    Scheduled Pinned Locked Moved Firewalling
    4 Posts 3 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R Offline
      rt050
      last edited by

      Hi all,

      Trying to investigate my slow speeds and load balance issues, I discovered this one in my logs. What happening to WAN2? Looks a little fishy to me and just wondering what this could be?

      Thanks
      ![Screen Shot 2016-01-28 at 18.00.36.png](/public/imported_attachments/1/Screen Shot 2016-01-28 at 18.00.36.png)
      ![Screen Shot 2016-01-28 at 18.00.36.png_thumb](/public/imported_attachments/1/Screen Shot 2016-01-28 at 18.00.36.png_thumb)

      1 Reply Last reply Reply Quote 0
      • KOMK Offline
        KOM
        last edited by

        Those are out of state packets.

        https://doc.pfsense.org/index.php/Why_do_my_logs_show_%22blocked%22_for_traffic_from_a_legitimate_connection

        1 Reply Last reply Reply Quote 0
        • johnpozJ Offline
          johnpoz LAYER 8 Global Moderator
          last edited by

          Why are you blocking your lan from using ntp?  if you don't want them going to the internet for time, then you should point them to pfsense or another ntp inside your network.

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 25.07.1 | Lab VMs 2.8.1, 25.07.1

          1 Reply Last reply Reply Quote 0
          • johnpozJ Offline
            johnpoz LAYER 8 Global Moderator
            last edited by

            Not the way I would suggest you do it..  Either allow traffic to where its going, fix it from going where you don't want it to go or live with the block..  Redirecting traffic to elsewhere is not a proper fix… If you wanted to use say googledns for your dns, and your network provider hijacked the traffic and sent it to opendns how would you feel?

            Normally the lan side of a network with someone that runs pfsense has some control over input into what the lan devices are configured for - I would configure them with the correct ntp you want them to use vs redirecting where you clearly don't want them going because your blocking it.

            edit:  Hey AspiringNSATroglodyte if your going to send me a PM, you might want to allow me to answer..  Says you have PMs blocked.

            Allow it or block it - fine, your suggestion of hijack is not the way I would suggest it be done..

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 25.07.1 | Lab VMs 2.8.1, 25.07.1

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.