Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
Having weird problem with default rule blocking some IPs and ports
« previous
next »
Print
Pages: [
1
]
Author
Topic: Having weird problem with default rule blocking some IPs and ports (Read 3859 times)
Death_Master
Newbie
Posts: 3
Karma: 0
Having weird problem with default rule blocking some IPs and ports
«
on:
January 20, 2020, 10:31:17 pm »
Hello.
I have a frustrating problem - from LAN i cannot access socks proxy outside while for example ICMP and HTTP are working perfectly.
Just installed opnsense on that router today so config is fresh.
What i see in logs - "Default deny rule" is blocking connections to socks proxy (LAN, direction=in).
Did try to setup rules for allowing all in on LAN, on WAN, on floating rules in any direction, nothing helps.
Can someone explain me hidden rules(as i did not see any that should block my traffic) that can contribute to default block?
How to fix the problem?
I need just simple setup that allows all LAN traffic pass out and all WAN return well when requested from LAN with a little shaping(shaping part i did setup already).
Logged
bartjsmit
Hero Member
Posts: 2018
Karma: 194
Re: Having weird problem with default rule blocking some IPs and ports
«
Reply #1 on:
January 21, 2020, 09:31:20 pm »
Is the proxy on an RFC 1918 address range? The default OPNsense config blocks those on the WAN
Bart...
Logged
Death_Master
Newbie
Posts: 3
Karma: 0
Re: Having weird problem with default rule blocking some IPs and ports
«
Reply #2 on:
January 22, 2020, 06:46:42 am »
No, it is on internet range.
If you want exact address - its on 80.246.31.3:1080 .
Logged
siga75
Full Member
Posts: 187
Karma: 11
Re: Having weird problem with default rule blocking some IPs and ports
«
Reply #3 on:
January 24, 2020, 07:10:50 am »
default deny is a "last match" rule, so if that does match it means your created rules didn't match, have you created them as "first match"? can you post a screenshot?
Logged
https://www.signorini.ch
Protectli Pfsense Mi7500L6 Intel 7Th Gen Core I7 7500U 16Gb Ddr4 Ram
512Gb Msata Ssd
6 X Intel Gigabit Ethernet
Death_Master
Newbie
Posts: 3
Karma: 0
Re: Having weird problem with default rule blocking some IPs and ports
«
Reply #4 on:
January 24, 2020, 07:41:14 am »
here is screenshot:
https://prnt.sc/qs4eqc
Logged
siga75
Full Member
Posts: 187
Karma: 11
Re: Having weird problem with default rule blocking some IPs and ports
«
Reply #5 on:
January 24, 2020, 07:58:32 am »
you didn't select source, put "any" or "LAN net", also provide a screenshot of the lower part, destination should also be set to any
Logged
https://www.signorini.ch
Protectli Pfsense Mi7500L6 Intel 7Th Gen Core I7 7500U 16Gb Ddr4 Ram
512Gb Msata Ssd
6 X Intel Gigabit Ethernet
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
Having weird problem with default rule blocking some IPs and ports