Firewall Rules - Scratching my head...

Started by Kornelius777, April 17, 2023, 05:21:29 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
April 17, 2023, 05:21:29 PM
Dear all,

the last few lines in my firewall rules look like this:

https://pasteboard.co/a28FaMlCVZ7I.png

However...
While accessing a website connected via a gateway, I keep getting this stuff:

https://pasteboard.co/r9ABXkZaw4t9.png

I was under the assumption that this last firewall rule should never be reached - I only inserted it for debugging purposes. How can I find out why the "grant all" rule is skipped?

Kind regards,
April 17, 2023, 06:31:24 PM #1
Can you show what subnet is configured under the LAN net?

Also did you try to clear the whole state table after you finished your rule set?
Networking is love. You may hate it, but in the end, you always come back to it.

OPNSense HW
APU2D2 - deceased
N5105 - i226-V | Patriot 2x8G 3200 DDR4 | L 790 512G - VM HA(SOON)
N100   - i226-V | Crucial 16G  4800 DDR5 | S 980 500G - PROD
April 17, 2023, 07:07:22 PM #2
LAN net is 192.168.150.0/24

Yes, State Table has been reset
April 17, 2023, 10:10:53 PM #3
This thread might help.
https://forum.opnsense.org/index.php?topic=20219.0#msg93687

I kept getting these on a router reboot. Or when I moved from one vlan to another. I'm pretty sure they are just old connections that are open on the server side but closed/aborted on the client side. Or something like that. Fright did a better job explaining things in the liked thread.
April 21, 2023, 03:44:16 PM #4
Hi. Have you checked Quick (see attached image) on the rules?
Print
Go Up Pages1
User actions