Messages

Thanks for your feedback.
Despite this configuration with the alias, the rejection remains the same..

Bonjour,
Je rencontre une difficulté.
J'ai une règle en place qui autorise mon LAN IPv4 à communiqué avec mon WAN adresse :
Protocol IPv4 source "ip de mon lan" port "any" destination "wan adresse" port "any" passerelle "par defaut"

Malgré cette règle j'ai la règle pas defaut qui me bloque :
   Source "IPlan:54941"    destination "8.8.4.4:53"   protoclole "udp"   label "Default deny / state violation rule"

Je n'arrive pas à outrapsser la regle automatique.
Pouvez-vous m'aider svp ?

Good morning,
I am encountering a difficulty.
I have a rule in place that allows my IPv4 LAN to communicate with my WAN address:
Protocol IPv4 source "ip of my lan" port "any" destination "wan address" port "any" gateway "default"

Despite this rule, I have the default rule that blocks me:
   Source "IPlan:54941" destination "8.8.4.4:53" protocol "udp" label "Default deny / state violation rule"

I can't override the automatic rule.
Can you help me please ?

I'm so stupid... it's not like I saw that my public IP came with several different ports and not just 4443...
In any case, it works! Thanks a lot !

On the other hand, I cannot get the understanding of:
with the wrong source port, I can access the webgui, without LAN added. However, as soon as I add a LAN, I no longer have access to it. It's really this understanding that I don't master.

Good morning,

Here is my project, I have an OPNsense instance on the OVH Public Cloud.
I have access to my Webgui via my WAN address and it suits me perfectly, only as soon as I activate a LAN interface, I no longer have access to my graphical interface via the WAN.

I only have access to it if I make the shell command pfctl -d. A deactivation of my firewall.

Yet I have a rule in place that is like this:

Traffic entrant : Protocole : TCP ; Source : My IP Public ; Port : 4443 ;  Destination : This Firewall ; Port : 4443

And yet if I don't order pfctl -d , When I add a LAN interface, I can't access my OPNsense on the web.


In the logs I find this refusal : INT WAN -> Traffic entrant -> My IP Public:52475 -> IP PUBLIC on my OPNsense:4443 -> Protocole tcp -> Default deny / state violation rule

I look forward to your help! ;D :D
Thanks

Good morning,

Here is my project, I have an OPNsense instance on the OVH Public Cloud.
I have access to my Webgui via my WAN address and it suits me perfectly, only as soon as I activate a LAN interface, I no longer have access to my graphical interface via the WAN.

I only have access to it if I make the shell command pfctl -d. A deactivation of my firewall.

Yet I have a rule in place that is like this:

Traffic entrant : Protocole : TCP ; Source : My IP Public ; Port : 4443 ;  Destination : This Firewall ; Port : 4443

And yet if I don't order pfctl -d , When I add a LAN interface, I can't access my OPNsense on the web.


In the logs I find this refusal : INT WAN -> Traffic entrant -> My IP Public:52475 -> IP PUBLIC on my OPNsense:4443 -> Protocole tcp -> Default deny / state violation rule

I look forward to your help! ;D :D
Thanks

Bonjour,

Je vous explique mon projet, J'ai créé un OPNsense.qcwo2 pour me servir de base pour en déployer plusieurs par la suite.

Malgré mes recherches sur le forum et sur les docs, je n'ai pas trouvé de réponses à ma questions.

Savez-vous si dans le qcow2 il y a une sérialisation des ID et qu'il faudra effectuer une commande du style sysprep sous Windows ou si je n'aurai pas de conflit si ils viennent à être dans le même réseau?

Je vous remercie d'avance.