Text only | Text with Images

OPNsense Forum

English Forums => General Discussion => Topic started by: Skye on January 30, 2025, 09:33:41 AM

Title: Regular rule doesn't allow traffic, but floating rule does
Post by: Skye on January 30, 2025, 09:33:41 AM
Hello,

I am new to OPNsense and having trouble understanding the firewall rules.  I am attaching a network diagram of my network layout.

If I try to ping from the VPS to the nginx box (ping 10.10.20.2), it only works if I create a floating any rule.  Even if I create any rules for each interface (in + out), it does not work until I create a floating rule.  (It also works if I shut down the packet filter from command line (pfctl -d))

Looking at the logs, they look pretty similar between each.  I can see the ping coming in and traversing the NAT in both cases, but I don't see it going back out again even though I have logging turned on for all rules.

I was hoping someone could help me understand what's going on here?

Thank you,
Skye

(See following posts for attachments since I can't fit them all on one)
Title: Re: Regular rule doesn't allow traffic, but floating rule does
Post by: Skye on January 30, 2025, 09:35:46 AM
(n/t)
Title: Re: Regular rule doesn't allow traffic, but floating rule does
Post by: hal9000 on May 25, 2025, 02:25:56 AM
Hi there,

I am curious if you figured this out - I am in the same situation right now and it's driving me insane that I can't figure it out.
Title: Re: Regular rule doesn't allow traffic, but floating rule does
Post by: EricPerl on May 26, 2025, 09:28:48 PM
Are you following a specific guide that explains the intended setup in greater detail?
Text only | Text with Images