OPNsense list incorrect rule in Firewall: Diagnostics: Sessions

Started by hharry, January 22, 2025, 02:34:12 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 22, 2025, 02:34:12 AM Last Edit: January 22, 2025, 03:12:37 AM by hharry
OPNsense list incorrect rule in Firewall: Diagnostics: Sessions

Clearly the below sessions have traffic flowing, but the rule listed is incorrect, as that rule is set to drop.....and the sessions do not match the rule criteria


why is this so ?

OPNsense 24.7.12-amd64

I even re-started OPNsense, and still observe the issue immediately after reboot

Does OPNsense have an issue with F/W rule based on src MAC based rule ? It seems not to be working very well

I use MAC based rule, as these hosts are DHCP clients, and no guarantee the future IP leases will be the same...

For now i have moved all MAC based alias to host IP address, to see if this resolves the issue, which is far from ideal for DHCP clients....no guarantee the future IP leases will be the same...


January 22, 2025, 03:22:37 AM #1
I believe the issue is larger than just MAC based alias, as below, the rule listed is also set to action = block, and both sessions are not bogon IPv6 networks... go figure, looks like the Rule column in  Firewall: Diagnostics: Sessions is quite buggy....


Print
Go Up Pages1
User actions