OPNsense Forum

Archive => 18.7 Legacy Series => Topic started by: mahescho on January 04, 2019, 05:05:47 pm

Title: [SOLVED] ICMP on WAN interaces
Post by: mahescho on January 04, 2019, 05:05:47 pm

Hi,

ICMP with IPv4 from an do my WAN interfaces does not work for some reason. Any other traffic and ICMP via NAT from internal networks and ICMP with IPv6 on WAN interfaces works. The only thing that does not work ist ICMP IPv4 from an to firewall WAN interfaces. I've created a simple rule with just "Protocol: IPv4+6 ICMP". As I've multiple WAN interfaces I've tested with "ping -S WANIP TARGETIP" too. No success. When I ping the WAN interface I can see the ICMP echo requests with "tcpdump" but no replies. PFLOG does not show blocks.

How can I make ICMP with IPv4 on WAN interfaces work?

TIA

Title: Re: ICMP on WAN interaces
Post by: mahescho on January 04, 2019, 10:02:59 pm

Fixed by trashing all my rules and recreating them. I don't know for sure what caused this but I suspect the deletation of the firewall rules generated by NAT port forwarding rules caused this in combination with switching the port forwarding rules to "pass" to make them work again ...

Title: Re: [SOLVED] ICMP on WAN interaces
Post by: franco on January 06, 2019, 09:18:53 pm

Normally it's just a single rule but order is important.


Cheers,
Franco