OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 19.7 Legacy Series »
  • Question about firewall rule 12
« previous next »
  • Print
Pages: [1]

Author Topic: Question about firewall rule 12  (Read 4567 times)

pvols1979

  • Newbie
  • *
  • Posts: 16
  • Karma: 0
  • Founder of Geekz @ geekzweb.com
    • View Profile
    • Geekz
Question about firewall rule 12
« on: July 19, 2019, 12:24:35 am »
I have some traffic that was blocked by firewall rule @12.  I have verified that I am looking at the correct rule, but I do not understand the intended purpose of the rule.  Could someone please help me identify the purpose of this rule and what happened to my traffic?

pfctl -vvsr | less ----  output below

Code: [Select]
@12 block drop in log inet all label "02f4bab031b57d1e30553ce08e0ec131"
  [ Evaluations: 116793    Packets: 12880     Bytes: 1187087     States: 0     ]
  [ Inserted: uid 0 pid 26447 State Creations: 0     ]
Example of blocked traffic:

Code: [Select]
Jul 18 11:08:05 OPNsense.localdomain Jul 18 11:07:56 OPNsense filterlog: 12,,,0,em0,match,block,in,4,0x0,,64,56516,0,DF,6,tcp,52,192.168.1.183,34.209.93.203,59191,443,0,RA,695610423,1604046542,451,,nop;nop;TS
Also, is there a way for me to convert the label to readable text?  I assume this label is obfuscated.
Logged
Founder of Geekz
https://geekzweb.com
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 19.7 Legacy Series »
  • Question about firewall rule 12
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2