Text only | Text with Images

OPNsense Forum

Archive => 20.7 Legacy Series => Topic started by: Barricade on October 21, 2020, 07:54:31 PM

Title: Firewall rule problem
Post by: Barricade on October 21, 2020, 07:54:31 PM
I have this setup, i can ping hosts on subnet but default deny rule is aplied when doing anything else and not my created lan rule.
Title: Re: Firewall rule problem
Post by: Gauss23 on October 21, 2020, 08:20:13 PM
Maybe there is a rule in ,,Floating"?
Title: Re: Firewall rule problem
Post by: Barricade on October 21, 2020, 08:28:03 PM
The Deny rule is from floating, but it should not be aplied as it's not set to first matc unlike my lan rule.
Title: Re: Firewall rule problem
Post by: Gauss23 on October 21, 2020, 08:34:58 PM
Why do you have a deny rule in floating? Default policy is already deny.

Maybe someone else can tell us something about the order in which rules are applied. In my opinion floating comes first. And maybe even without first match it's applied at the end of the floating rules. But I'm not sure about that.
Title: Re: Firewall rule problem
Post by: Barricade on October 21, 2020, 08:49:25 PM
This is automatic rule in floating.
Title: Re: Firewall rule problem
Post by: Gauss23 on October 21, 2020, 09:05:19 PM
Sorry for the misunderstanding.

Does the alias ,,LAN Net" match your current lan net? Maybe there is a glitch.
Title: Re: Firewall rule problem
Post by: Barricade on October 21, 2020, 10:05:15 PM
LAN net is default internal network from OPNsense
Title: Re: Firewall rule problem
Post by: Gauss23 on October 21, 2020, 10:11:34 PM
Why is a packet from 192.168.1.x to the same subnet passing the OPNsense? Or is this not a /24 net?

Maybe you can post a network plan. Looks weird to me.
Title: Re: Firewall rule problem
Post by: Barricade on October 21, 2020, 10:54:11 PM
You were right, i added default route instead gateway on my AP and can't connect.
Text only | Text with Images