"
I have read information on firewall configuration for Transmission-Daemon and it appears all is working but I have quite a lot of denied firewall outbound traffic. I am able to download torrents from a specific tracker I am allowed to access and when viewing the peer listening port in the GUI it shows open. Also if I go to canyousee.com it is successful on the chosen port. The denied traffic appears to be return traffic which should be stateful? Thanks for any insight.
Software/Hardware
Distro Debian
Transmission-Daemon 2.92-2 (Debian Repo)
OPNSense (Latest Version)
OPNSense Config:
Destination NAT:
WAN Interface: TCP/UDP Src: Any Dst: WAN_IP Port 55555 > DebianIP Port 55555
Firewall Rules:
LAN Interface:
TCP/UDP Src Any Dst Any Port 53,123
TCP/UDP Src Any Dst tracker_url Port 2145
TCP/UDP Src Any Dst portcheck.transmissionbt.com Port 80
**** Implicit Deny All ****
WAN Interface:
TCP/UDP Src Any Dst DebianIP Port 55555
**** Implicit Deny All ****
Firewall Logs show a multitude of entries like the one line shown below (with the real IPs and ports omitted). I believe the firewall should be stateful and handling this return traffic? Any help or ideas are appreciated. I do see some peers leeching from me, not much.
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Software/Hardware
Distro Debian
Transmission-Daemon 2.92-2 (Debian Repo)
OPNSense (Latest Version)
OPNSense Config:
Destination NAT:
WAN Interface: TCP/UDP Src: Any Dst: WAN_IP Port 55555 > DebianIP Port 55555
Firewall Rules:
LAN Interface:
TCP/UDP Src Any Dst Any Port 53,123
TCP/UDP Src Any Dst tracker_url Port 2145
TCP/UDP Src Any Dst portcheck.transmissionbt.com Port 80
**** Implicit Deny All ****
WAN Interface:
TCP/UDP Src Any Dst DebianIP Port 55555
**** Implicit Deny All ****
Firewall Logs show a multitude of entries like the one line shown below (with the real IPs and ports omitted). I believe the firewall should be stateful and handling this return traffic? Any help or ideas are appreciated. I do see some peers leeching from me, not much.
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
Src DebianIP:55555 > RandomPublicIP:RandomPort Default Deny (Blocked)
