Firewall does not block

Started by yeraycito, June 28, 2020, 01:47:48 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
June 28, 2020, 01:47:48 PM
System:    OPNsense 20.7.b_181-amd64
FreeBSD 12.1-RELEASE-p5-HBSD
OpenSSL 1.1.1g 21 Apr 2020

Suricata 5 in WAN

I find it strange that in 24 hours the firewall hasn't blocked anything. However, Suricata does block.
June 28, 2020, 02:09:42 PM #1
It seems to be a problem related to syslog-ng not being active. I just restarted opnsense and syslog-ng has been activated and the firewall has started working.
June 28, 2020, 03:36:21 PM #2
The firewall works as long as syslog-ng is active but seems to block a lot of traffic on the lan but only on the wan.
June 28, 2020, 04:05:35 PM #3
the firewall is always active whether or not syslog-ng is active or not. You just won't see it in the logs if syslog-ng is not active.
OPNsense 25.7a - Qotom Q355G4 - ISP - Squirrel 1Gbps.

Team Rebellion Member
June 28, 2020, 04:22:36 PM #4
Thank you for the information. It still seems to block little traffic in the wan when suricata is active in the wan as well. When you restart opnsense and before suricata is activated the firewall blocks many more ips on the wan. Once suricata is active along with the firewall, the firewall blocks almost nothing on the wan.
June 28, 2020, 05:11:07 PM #5
That said, very little blocking in the wan by the firewall.
June 28, 2020, 05:47:27 PM #6
Widget traffic graph not working
July 03, 2020, 06:05:52 AM #7
Your tone in your posts sounds very aggressive, doesnt really motivate ppl to help.

When syslog is not running, blocked packets are not logged, but they are still blocked. You can check rules and stats via CLI with pfctl -s all
Print
Go Up Pages1
User actions