[SOLVED] Weird UDP Problems

Started by seed, August 27, 2020, 07:45:37 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 27, 2020, 07:45:37 PM Last Edit: September 04, 2020, 01:50:25 PM by seed
I have noticed an weird UDP issue.

My Setup:

The OPnsense is running on hardware and connected by PPPoe.

Windows Clients are not able to connect to external NTP Servers (outside of my Network), IPsec Clients in my network cant connect to their servers (outside of my Network)

When i tcpdump on the (internal) vlan interface i cannot see any udp packages being captured. The snat rules are set to default. asking the ntp server with linux: ntpdate -q $Server works fine (ipv4 + IPv6)

I have set rules that allow outgoing UDP + TCP + ICMP + ANY but outgoing IPSec, or Windows NTP does not work.

My Firewall Rules are mostly set to sloppy. What is happening? Even after a fresh install the issue persists.
Is the Interface "throuing out" these packages so that i cant see them in tcpdump? is this related to netmap? i dont have suricata running.

When these clients connect to our "Freifunk" their applications work fine and they are able to connect to the ntp servers or the IPSec Servers.
i want all services to run with wirespeed and therefore run this dedicated hardware configuration:

AMD Ryzen 7 9700x
ASUS Pro B650M-CT-CSM
64GB DDR5 ECC (2x KSM56E46BD8KM-32HA)
Intel XL710-BM1
Intel i350-T4
2x SSD with ZFS mirror
PiKVM for remote maintenance

private user, no business use
September 04, 2020, 01:49:42 PM #1
Solved.

a faulty switch caused the weird problems. Its ddos protection dropped the frames without logging thase incidents.
i want all services to run with wirespeed and therefore run this dedicated hardware configuration:

AMD Ryzen 7 9700x
ASUS Pro B650M-CT-CSM
64GB DDR5 ECC (2x KSM56E46BD8KM-32HA)
Intel XL710-BM1
Intel i350-T4
2x SSD with ZFS mirror
PiKVM for remote maintenance

private user, no business use
Print
Go Up Pages1
User actions