Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
Firewall rule problem
« previous
next »
Print
Pages: [
1
]
Author
Topic: Firewall rule problem (Read 2325 times)
Barricade
Newbie
Posts: 8
Karma: 0
Firewall rule problem
«
on:
October 21, 2020, 07:54:31 pm »
I have this setup, i can ping hosts on subnet but default deny rule is aplied when doing anything else and not my created lan rule.
Logged
Gauss23
Hero Member
Posts: 766
Karma: 39
Re: Firewall rule problem
«
Reply #1 on:
October 21, 2020, 08:20:13 pm »
Maybe there is a rule in „Floating“?
Logged
„The S in IoT stands for Security!“
Barricade
Newbie
Posts: 8
Karma: 0
Re: Firewall rule problem
«
Reply #2 on:
October 21, 2020, 08:28:03 pm »
The Deny rule is from floating, but it should not be aplied as it's not set to first matc unlike my lan rule.
Logged
Gauss23
Hero Member
Posts: 766
Karma: 39
Re: Firewall rule problem
«
Reply #3 on:
October 21, 2020, 08:34:58 pm »
Why do you have a deny rule in floating? Default policy is already deny.
Maybe someone else can tell us something about the order in which rules are applied. In my opinion floating comes first. And maybe even without first match it's applied at the end of the floating rules. But I'm not sure about that.
Logged
„The S in IoT stands for Security!“
Barricade
Newbie
Posts: 8
Karma: 0
Re: Firewall rule problem
«
Reply #4 on:
October 21, 2020, 08:49:25 pm »
This is automatic rule in floating.
Logged
Gauss23
Hero Member
Posts: 766
Karma: 39
Re: Firewall rule problem
«
Reply #5 on:
October 21, 2020, 09:05:19 pm »
Sorry for the misunderstanding.
Does the alias „LAN Net“ match your current lan net? Maybe there is a glitch.
Logged
„The S in IoT stands for Security!“
Barricade
Newbie
Posts: 8
Karma: 0
Re: Firewall rule problem
«
Reply #6 on:
October 21, 2020, 10:05:15 pm »
LAN net is default internal network from OPNsense
Logged
Gauss23
Hero Member
Posts: 766
Karma: 39
Re: Firewall rule problem
«
Reply #7 on:
October 21, 2020, 10:11:34 pm »
Why is a packet from 192.168.1.x to the same subnet passing the OPNsense? Or is this not a /24 net?
Maybe you can post a network plan. Looks weird to me.
Logged
„The S in IoT stands for Security!“
Barricade
Newbie
Posts: 8
Karma: 0
Re: Firewall rule problem
«
Reply #8 on:
October 21, 2020, 10:54:11 pm »
You were right, i added default route instead gateway on my AP and can't connect.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
Firewall rule problem