1
General Discussion / TCP Sessions killed across VLANs
« on: May 28, 2024, 12:50:04 am »
I am running Opnsense 24.1.7 however this has been an issue for several years and I'm just now getting to the point where I'm admitting that I can't figure it out and looking for some assistance. What is happening is a TCP connection from VLAN20 is making an SSH connection to a device in VLAN10. The connection is established and everything works fine for about 30ish seconds and then the firewall starts blocking the connection. This isn't unique to SSH. I've see the same behavior with HTTP and HTTPS connections, however the issue is more easily reproducible using SSH so that is what I'll be focusing on.
Logs showing traffic being allowed both in an out on the respective VLANS and then denied after about 30ish seconds
Log Details:
Details of Block:
What I suspect is happening is happening is for some reason the firewall is VERY aggressively killing the tcp sessions. A while back I found a setting in the Opnsense settings (don't remember what it was called) but it made the connection last longer (from 30ish seconds to around 10 minutes if I remember correctly). Obviously is more of a band aide than a fix, so I'm wondering if anyone else has experienced issues like this or might have a clue about what's going on with my firewall?
Logs showing traffic being allowed both in an out on the respective VLANS and then denied after about 30ish seconds
Log Details:
Details of Block:
What I suspect is happening is happening is for some reason the firewall is VERY aggressively killing the tcp sessions. A while back I found a setting in the Opnsense settings (don't remember what it was called) but it made the connection last longer (from 30ish seconds to around 10 minutes if I remember correctly). Obviously is more of a band aide than a fix, so I'm wondering if anyone else has experienced issues like this or might have a clue about what's going on with my firewall?