Messages

1

General Discussion / Help with "Default deny rule"

« on: August 20, 2019, 10:28:47 pm »

Greetings,
I've seen some other posts along the same subject here on the forums but I haven't been able to take what's been discussed there and turn that into a solution for my case.
I have two routed VLANs (71 & 77) with OPNSense as the gateway between the two VLANs.
For simplicity I have created allow any rules for each interface.
     Firewall > Rules > 71 >
          Pass | IPv4* | Source: 71-Net | * | * | * | * | *
     Firewall > Rules > 77 >
          Pass | IPv4* | Source: 77-Net | * | * | * | * | *
For the most part traffic flows from hosts in each VLAN to hosts in the opposite VLAN but for some reason NFS traffic is regularly blocked between the two subnets and the rule name it gives is "Default deny rule"

Code: [Select]

filterlog: 19,,,0,em1_vlan77,match,block,in,4,0x0,,64,38995,0,DF,6,tcp,40,10.0.77.10,10.0.71.16,1001,2049,0,A,,3500742655,512,,
filterlog: 19,,,0,em1_vlan77,match,block,in,4,0x0,,64,40072,0,DF,6,tcp,40,10.0.77.9,10.0.71.16,917,2049,0,R,2135877012,,0,,
Looking for some guidance as to why those allow any rules aren't always allowing NFS (2049/TCP) traffic.

Thanks,
Jon

2

General Discussion / Re: How to configure OPNsense on OVH Hosting in a virtual environment

« on: May 31, 2017, 05:59:30 am »

I found this https://forum.ovh.co.uk/showthread.php/6507-ESXi-pfSense-and-failover-IP
and successfully followed those steps on pfSense, but when trying to do the same on OPNsense, no joy.

The individual shell scripts do their thing, but the bit in devd doesn't seem to trigger the shell scripts.

Is someone able to take these instructions for pfSense and adapt them for OPNsense?