Hi,
I am facing issues with port forwarding. Specifically, seeing blocks from the Default deny / state violation rule. I have had the exact same configuration options on my PfSense FW and moved to OpnSense to see that it does not work as intended.
I've tried Factory resetting and trying the setup to no avail.
At my wits end here. I don't want to go abck to Pfsense or with another FW vendor, since I quite like the way OPNSense handles things.
My Setup:
Version: OPNsense 25.7.3_7-amd64
[ONT]>[OpnSense]>[L3Switch] (Transit lan 10.10.10.10)>VLANS
Gateway:
https://imgur.com/a/m3Qbvnx
Routes:
https://imgur.com/OsdEdSg
Port Forward:
https://imgur.com/yQxDMKp
OutBound NAT:
https://imgur.com/lQvnEh0
FW settings (advanced):
https://imgur.com/utwbhM7
Blocks:
https://imgur.com/tSbRnP3
https://imgur.com/H2lZbOy
Let me know if more information is needed
Hi Boxx1e,
would you please also show your firewall rules for the WAN interface...
lueralba
Sure, added link.
WAN Rules:
https://imgur.com/xHuddsi
Also, I found this out accidentally, and due to my lack of knowledge; when I turn off syn flood protection, port forwarding works, but the buffers fill up. Which is I think intended?
This whole thing is bizzare
Would you like to enable logging for all rules
in Port Forward and OutBound NAT to see the complete process
of your incoming packet?
Quote from: Boxx1e on September 12, 2025, 08:35:48 PMPort Forward:
https://imgur.com/yQxDMKp (https://imgur.com/yQxDMKp)
I don't know, what's behind the alias, but using the same as destinaton and redirect target doesn't make much sense in my opinion.
Quote from: Boxx1e on September 12, 2025, 08:35:48 PMBlocks:
https://imgur.com/tSbRnP3 (https://imgur.com/tSbRnP3)
https://imgur.com/H2lZbOy (https://imgur.com/H2lZbOy)
The traffic is simply blocked.
Without knowing, what's the source and destination and what your rules allow, I cannot tell you why, however.