Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
21.1 Legacy Series
»
Same VLAN traffic being logged (blocked) by the FW
« previous
next »
Print
Pages: [
1
]
Author
Topic: Same VLAN traffic being logged (blocked) by the FW (Read 1630 times)
opn_nwo
Jr. Member
Posts: 70
Karma: 0
Same VLAN traffic being logged (blocked) by the FW
«
on:
June 21, 2021, 02:35:57 pm »
In my home network I have a MEDIA VLAN I use for all kinds of devices (gaming consoles, STB, Google Home, Chromecasts, Smart TVs etc). Some are wired others are WiFi. I used Ubiqiti Unifi APs and switches.
Over the past few days I noticed in the FW logs entries of some Google devices trying to connect to my TV STB (Android TV based). Being on the same VLAN and broadcast domain (192.168.177.0/24) I would not expect to see any traffic "captured" by the log. Those devices should be able to connect to each other without going through OPNsense.
However in the logs (attached) I can see a bunch of 192.168.177.xx devices trying to reach my STB box (192.168.177.55) on UDP 10006. In order to keep the logs "clean" I added an allow rule for that traffic, but I do not understand why this is happening. It does not make sense to me.
Logged
thogru
Full Member
Posts: 130
Karma: 4
Re: Same VLAN traffic being logged (blocked) by the FW
«
Reply #1 on:
June 21, 2021, 06:46:14 pm »
Hi opn_nwo,
TO my understanding packets having source and destination in the same net (in your case 192.168.177.0/24) do not need a router to reach the target machine.
On the other hand your router is part of 192.168.177.0/24 as well. So I assume the router take the packets and discard them based on your rules.
Base on this I would think that everything works fine before you added the "log suppressing" rule.
Kind Regards,
Thomas
Logged
Don't forget to [applaud] those offering time and brainpower to help you!
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
21.1 Legacy Series
»
Same VLAN traffic being logged (blocked) by the FW