Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
16.7 Legacy Series
»
[solved] Strange ping behaviour
« previous
next »
Print
Pages: [
1
]
Author
Topic: [solved] Strange ping behaviour (Read 5382 times)
marekdes
Newbie
Posts: 7
Karma: 1
[solved] Strange ping behaviour
«
on:
September 21, 2016, 08:37:21 pm »
LAN: 192.168.1.0/24
WAN: 192.168.2.1, 255.255.255.0, upstream gateway 192.168.2.253
Problem: WAN clients (i.e. a client with address from 192.168.2.0/24) cannot ping WAN interface.
But OPNsense is able to ping those WAN clients.
I ran tcpdump and found out that OPNsense is sending ping reply to upstream gateway instead of client itself - they are in same subnet!
Once I disable firewall, ping starts working (ping reply is sent to appropriate client).
Firewall has only 3 rules (except two default ones - block bogon and private networks):
1. accept any traffic from my workstation (I cannot ping WAN interface either, but I can manage OPNsense throught it)
2. accept any ICMP traffic
3. block any other traffic
4. enabled "Bypass firewall rules for traffic on the same interface"
5. floating rules - only default "Block all IPv6 traffic"
6. NAT: "Manual outbound NAT rule generation" with autocreated LAN -> WAN rule (192.168.1.0/24 -> 192.168.2.1)
«
Last Edit: September 22, 2016, 08:20:26 pm by marekdes
»
Logged
franco
Administrator
Hero Member
Posts: 17675
Karma: 1613
Re: Strange ping behaviour
«
Reply #1 on:
September 21, 2016, 08:48:58 pm »
Hi marekdes,
Try Firewall: Settings: Advanced: check "Disable reply-to on WAN rules".
Cheers,
Franco
Logged
marekdes
Newbie
Posts: 7
Karma: 1
Re: Strange ping behaviour
«
Reply #2 on:
September 22, 2016, 08:20:58 pm »
Quote from: franco on September 21, 2016, 08:48:58 pm
Firewall: Settings: Advanced: check "Disable reply-to on WAN rules".
That was it! Thanks.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
16.7 Legacy Series
»
[solved] Strange ping behaviour