GRC Shields Up test - ICMP response, port 89 and 90 closed not stealth

[techgirl45]

Hi all, I recently built OPNsense as a new router for my home VDSL service. One of the first things I did was to run the Shields Up test to see if there were any ports open, closed or ICMP responses. I'm sure a few weeks back when I did this test everything came back green.

I've tested this again today and ICMP is apparently responding and port 89 and 90 are showing as closed and not stealth. I'm not sure if port 89 and 90 are closed on the ISP side and are responding there, although the destination IP address is assigned to my WAN interface. I checked my firewall logs and cannot see any ICMP with a destination of my WAN interface being logged. There is some accepted ICMP traffic but it looks like it is originating from the firewall and being accepted by the LAN rule.

Does anyone have any view of this? I was considering resetting the firewall completely as I made some configuration changes to implement OPENVPN with Nord, but I rolled back to an earlier configuration as I needed to work on that again at another time.

Thanks

[techgirl45]

An update in that the problem was via a desktop VPN causing the confusion so issue is resolved!