Text only | Text with Images

OPNsense Forum

English Forums => General Discussion => Topic started by: Toolin44 on May 30, 2018, 05:43:55 PM

Title: opnsense blocks all LAN traffic to the outside
Post by: Toolin44 on May 30, 2018, 05:43:55 PM
Hello everyone,

Since a few days I have a problem, opnsense blocks all LAN traffic to the outside.
Any ideas.

(https://image.noelshack.com/fichiers/2018/22/3/1527694966-sans-titre.png)
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: Toolin44 on June 04, 2018, 01:39:25 PM
help !!!!
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: chemlud on June 04, 2018, 02:03:35 PM
How???
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: Toolin44 on June 04, 2018, 02:17:44 PM
here is a screen shot :

https://image.noelshack.com/fichiers/2018/23/1/1528115096-sans-titre.png

(https://image.noelshack.com/minis/2018/23/1/1528114648-5098738683731356536.png) (https://www.noelshack.com/2018-23-1-1528114648-5098738683731356536.jpg)
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: marjohn56 on June 04, 2018, 02:35:53 PM
Can you post ALL your rules please, LAN and WAN.
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: Toolin44 on June 04, 2018, 02:40:48 PM
rules LAN and WAN

(https://image.noelshack.com/fichiers/2018/23/1/1528115978-sans-titre.png)
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: marjohn56 on June 04, 2018, 02:55:17 PM
Yes, well that does not tell me much as all the WAN stuff is redacted. ???


Whatever. it appears there are no strange blocks that I can see, but there are few things to look at.


Let's start with some diagnostics... try this, do you get a response?


(https://preview.ibb.co/c8z2No/Capture.png) (https://ibb.co/mkxYTT)
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: Toolin44 on June 04, 2018, 03:08:16 PM
(https://image.noelshack.com/fichiers/2018/23/1/1528117326-sans-titre.png)



here is an example :


I allowed all the external connection to my controller unified, but the firexall blocks most of connection

(https://image.noelshack.com/fichiers/2018/23/1/1528117319-sans-ti55tre.png)
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: marjohn56 on June 04, 2018, 04:50:27 PM
I assume what I see there is the port forward rule...


What about the associated rule in the firewall WAN rule settings?



Title: Re: opnsense blocks all LAN traffic to the outside
Post by: Toolin44 on June 04, 2018, 04:55:05 PM
here is the firewall WAN rule settings

(https://image.noelshack.com/fichiers/2018/23/1/1528123950-sans-titre.png)
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: marjohn56 on June 04, 2018, 05:07:00 PM
Yep.. I cannot see anything wrong there. Try deleting the 8080 rule and creating it as a floating rule, see if that works.
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: Toolin44 on June 04, 2018, 05:11:08 PM
I have all tried, there is not only problem. Also when i connect in ssh on a remote server it blocks me....


example : I allowed all outgoing LAN traffic, but it blocks as even the outgoing traffic (it's variant)
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: marjohn56 on June 04, 2018, 05:18:48 PM
SSH is not open by default on the WAN interface, and I don't advise you do so. If you want to connect remotely to the firewall the secure method is to use VPN and then use a SSH.
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: Toolin44 on June 04, 2018, 05:20:32 PM
sorry, I'm talking about connecting to a VPS on ssh
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: marjohn56 on June 04, 2018, 05:24:43 PM
If you like, you can pm me your rules.debug file, I'll see if there is something there I may be missing when looking at your rules.
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: Toolin44 on June 04, 2018, 05:39:42 PM
how can find rules.debug file.



it is a PC Engines APU :

OPNsense 18.1.9-amd64
FreeBSD 11.1-RELEASE-p10
OpenSSL 1.0.2o 27 Mar 2018
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: marjohn56 on June 04, 2018, 05:40:39 PM
It's in the /tmp folder.
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: marjohn56 on June 04, 2018, 05:41:47 PM
Have  you had this working at all?
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: Toolin44 on June 04, 2018, 05:53:30 PM
I sent it to you in private message,
did you receive my message.

Thanks for your help
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: marjohn56 on June 04, 2018, 06:21:51 PM
I've got it yes...  just studying it at the moment....


I'll pm you in a moment, I have a question.
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: Toolin44 on June 04, 2018, 06:23:14 PM
yes what is the question
Title: Re: opnsense blocks all LAN traffic to the outside
Post by: marjohn56 on June 04, 2018, 06:24:43 PM
It's in the pm.  :)
Text only | Text with Images