I've been utilizing cloudflare for my DNS provider and domain host. I've set it so that 443 is port forwarded to an Nginx Proxy Manager and it has been working beautifully until roughly a week ago. Now I'm getting constant hits on the system's Default deny / state violation rule for inbound connections. I've attempted to setup an alias for cloudflare to be allowed inbound but still getting blocks on it. Current release I'm running is 25.1.12.
Any tips/thoughts/ideas?
I've got my GUI port changed to accomodate this
Does the "i" link on the right of the live view give you any insight into the reason for the block? TCP flags in particular... Although it could be QUIC (HTTP over UDP) if you only allow 443/TCP.
I think in my general troubleshooting I did add UDP as an option. I also switched over to having it track the cloudflare IPs (my DNS host at this point for all the things) and things have generally been working better compared to me utilizing a GEOIP limited approach to the port forward.