OPNsense Forum
English Forums => General Discussion => Topic started by: Toolin44 on May 30, 2018, 05:43:55 pm
-
Hello everyone,
Since a few days I have a problem, opnsense blocks all LAN traffic to the outside.
Any ideas.
(https://image.noelshack.com/fichiers/2018/22/3/1527694966-sans-titre.png)
-
help !!!!
-
How???
-
here is a screen shot :
https://image.noelshack.com/fichiers/2018/23/1/1528115096-sans-titre.png
(https://image.noelshack.com/minis/2018/23/1/1528114648-5098738683731356536.png) (https://www.noelshack.com/2018-23-1-1528114648-5098738683731356536.jpg)
-
Can you post ALL your rules please, LAN and WAN.
-
rules LAN and WAN
(https://image.noelshack.com/fichiers/2018/23/1/1528115978-sans-titre.png)
-
Yes, well that does not tell me much as all the WAN stuff is redacted. ???
Whatever. it appears there are no strange blocks that I can see, but there are few things to look at.
Let's start with some diagnostics... try this, do you get a response?
(https://preview.ibb.co/c8z2No/Capture.png) (https://ibb.co/mkxYTT)
-
(https://image.noelshack.com/fichiers/2018/23/1/1528117326-sans-titre.png)
here is an example :
I allowed all the external connection to my controller unified, but the firexall blocks most of connection
(https://image.noelshack.com/fichiers/2018/23/1/1528117319-sans-ti55tre.png)
-
I assume what I see there is the port forward rule...
What about the associated rule in the firewall WAN rule settings?
-
here is the firewall WAN rule settings
(https://image.noelshack.com/fichiers/2018/23/1/1528123950-sans-titre.png)
-
Yep.. I cannot see anything wrong there. Try deleting the 8080 rule and creating it as a floating rule, see if that works.
-
I have all tried, there is not only problem. Also when i connect in ssh on a remote server it blocks me....
example : I allowed all outgoing LAN traffic, but it blocks as even the outgoing traffic (it's variant)
-
SSH is not open by default on the WAN interface, and I don't advise you do so. If you want to connect remotely to the firewall the secure method is to use VPN and then use a SSH.
-
sorry, I'm talking about connecting to a VPS on ssh
-
If you like, you can pm me your rules.debug file, I'll see if there is something there I may be missing when looking at your rules.
-
how can find rules.debug file.
it is a PC Engines APU :
OPNsense 18.1.9-amd64
FreeBSD 11.1-RELEASE-p10
OpenSSL 1.0.2o 27 Mar 2018
-
It's in the /tmp folder.
-
Have you had this working at all?
-
I sent it to you in private message,
did you receive my message.
Thanks for your help
-
I've got it yes... just studying it at the moment....
I'll pm you in a moment, I have a question.
-
yes what is the question
-
It's in the pm. :)