firewall seemingly ignoring allow rule

Started by molnart, July 17, 2021, 12:58:51 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
July 17, 2021, 12:58:51 AM
I have a VLAN set up for smart devices that has normally blocked internet access, except enabling it occasionally for update & maintenance purposes. I am quite positive that in the past i several times enabled the firewall rule for WAN access and it worked, but now it does not.

these are my fireall rules: (normally the last two rules are disabled/enabled in the opposite way as on the picture)
https://imgur.com/gLdsLqZ

yet OPNsense keeps blocking the internet access for some reason:
https://imgur.com/4ISFrtV

any idea why is this happening?
July 19, 2021, 12:50:28 AM #1
update: tried restarting OPNsense, internet stopped working altogether.

during boot I got repeated "Configuring firewall.... failed" messages. only thing that helped was to restore to previous OPNsense backup (version 20.1.7) and now my initial problem with VLAN has been resolved as well.

seems like there's some issue introduced in 20.1.8...
July 19, 2021, 10:10:37 PM #2
Hi
so where are you now? tried again?
July 20, 2021, 10:29:17 PM #3
everything works now after rolling back to 20.1.7. was afraid to upgrade back to 20.1.8 as at the moment I have a little time playing around with it, in case it goes wrong again.

however some advice on how to fix the "Configuring firewall... failed" startup message would be nice for future reference
July 21, 2021, 08:07:46 AM #4
Quotefix the "Configuring firewall... failed" startup message
From what I see, two options are possible: problems with writing the rules to a file or errors with loading the rules by the pf itself.
corresponding messages should appear in the general log for debugging
Print
Go Up Pages1
User actions