After system upgrade i got floating automated rule "let out anything from firewall host itself"
Its * to *. So it will overtake ANY block rule.
I can add manual rule to lan interface * to * block. all trafic is still passed.
How to disable these automatic rule generations?
Pretty sure it's 'non quick'.
If you hover over the lightning bolt, it says 'last match'... which means specific first match rules (with quick) will take priority.
It's also an outbound rule, rules you apply to zones match inbound to the interface/zone.
have 2 wans and 2 lans.
WAN01 and WAN02 come from VLAN
LAN02 is VLAN also
Before upgrade things worked.
For sanity test did put block any to any to any interfaces- noup, ZERO effect. All is passed throu like nothing there.
I did notice it cos some websites suposed to be blocked, now ANY block rules wont work.
On picture is one interface, and yes everything is passed like its not there.
ok will have clean install and if still see that all trafic is allowed between interfaces even firewall rule is set to block then will revert to pfSense. Its bit stupid to force any auto rules. I get about anti lockout but rest. WHY would anyone want permanent non deletable "godemode" rules?
Noup, even VLANS are now broken, Gateway monitoring won't work. Seems like Opensense has BIG issue with VLAN
Quote from: murphy on August 11, 2023, 11:53:56 AM
Noup, even VLANS are now broken, Gateway monitoring won't work. Seems like Opensense has BIG issue with VLAN
All VLANs on top if LAGG here - no problems whatsoever. This must be specific to your configuration. Please describe your problem in more detail.