[SOLVED] ICMP on WAN interaces

Started by mahescho, January 04, 2019, 05:05:47 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 04, 2019, 05:05:47 PM Last Edit: January 06, 2019, 09:18:32 PM by franco
Hi,

ICMP with IPv4 from an do my WAN interfaces does not work for some reason. Any other traffic and ICMP via NAT from internal networks and ICMP with IPv6 on WAN interfaces works. The only thing that does not work ist ICMP IPv4 from an to firewall WAN interfaces. I've created a simple rule with just "Protocol: IPv4+6 ICMP". As I've multiple WAN interfaces I've tested with "ping -S WANIP TARGETIP" too. No success. When I ping the WAN interface I can see the ICMP echo requests with "tcpdump" but no replies. PFLOG does not show blocks.

How can I make ICMP with IPv4 on WAN interfaces work?

TIA
OPNsense 24.1.6-amd64
FreeBSD 13.2-RELEASE-p11
OpenSSL 3.0.13
January 04, 2019, 10:02:59 PM #1 Last Edit: January 04, 2019, 11:47:47 PM by mahescho
Fixed by trashing all my rules and recreating them. I don't know for sure what caused this but I suspect the deletation of the firewall rules generated by NAT port forwarding rules caused this in combination with switching the port forwarding rules to "pass" to make them work again ...
OPNsense 24.1.6-amd64
FreeBSD 13.2-RELEASE-p11
OpenSSL 3.0.13
January 06, 2019, 09:18:53 PM #2
Normally it's just a single rule but order is important.


Cheers,
Franco
Print
Go Up Pages1
User actions