Weird "Default deny / state violation rule" behavior

tyrell · September 24, 2024, 11:20:59 AM

Cheers,

yesterday we installed a site2site wireguard vpn on our opnsense.
new interface was created "wg1". when i clicked apply to the changes of the interfaces there was no working internet anymore.
the logs on all the vlans hat the default deny / state violation rule on, blocking all packets. so somehow the first match rule "allow all" that we have on all interfaces was not matching anymore.

i still dont get why.
we reverted back with a backup. we still have some packets beeing blocked by default deny rule where i also have no clue why.

any help is appreciated.

Screenshots attached. Somehow embedding didnt work

pradip.marathon · October 22, 2024, 09:32:24 AM

OPNsense is blocking some traffic even after adding a specific rule to allow everything from that source. Please find the screenshot and logs below for your reference.

I would appreciate your assistance in diagnosing this issue.

Weird "Default deny / state violation rule" behavior

tyrell

September 24, 2024, 11:20:59 AM

pradip.marathon

October 22, 2024, 09:32:24 AM #1