Text only | Text with Images

OPNsense Forum

English Forums => General Discussion => Topic started by: christian@hechtimnetz.de on August 16, 2025, 10:53:39 PM

Title: WAN ICMP from network allowing
Post by: christian@hechtimnetz.de on August 16, 2025, 10:53:39 PM
Just want to get a rule working that allows icmp to my PPPoE WAN interface from the provider for monitoring purpose.
But still
Interface      Time             Source   Destination   Proto   Label
WAN      2025-08-16T22:45:36   41.193.20.41   x.x.223.207   icmp   Default deny / state violation rule

Rule WAN IN:
Protocol   Source           Port   Destination   Port   Gateway   Schedule
IPv4 ICMP   41.193.52.27/32   *   This Firewall   *   *   *      
   
Just new with OPNsense and had used Astaro/Sophos for years.
Title: Re: WAN ICMP from network allowing
Post by: Patrick M. Hausen on August 16, 2025, 11:20:01 PM
The source of the blocked log entry does not match the source in your rule.
Title: Re: WAN ICMP from network allowing
Post by: christian@hechtimnetz.de on August 16, 2025, 11:31:56 PM
sorry my fault, copy the wrong line. I will check the log again
Title: Re: WAN ICMP from network allowing
Post by: christian@hechtimnetz.de on August 17, 2025, 07:22:36 PM
Still the same issue, doesn't matter of i choose "this firewall", then WAN ip or any, icmp is always dropped.

Interface      Time             Source   Destination   Proto   Label

WAN      2025-08-17T19:21:23      41.193.52.27   x.x.223.207   icmp   Default deny / state violation rule
Text only | Text with Images