Firewall rules not working as configured

Started by seed, November 12, 2023, 09:52:23 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
November 12, 2023, 09:52:23 PM Last Edit: November 12, 2023, 09:54:17 PM by seed
Today I converted my mail server to dualstack and therefore added the IPv6 address to the alias in the WAN rule. However, no tcp handshake was established (the syn-ack couldnt "get out").


After several hours of searching, I recreated the exact same rule and suddenly it worked.

How can this happen?
I want all services to run with wirespeed and therefore run this dedicated hardware configuration. Suricata is very demanding.

AMD Ryzen 9 9950X3D
ASUS Pro WS B850M-ACE SE
64GB DDR5 ECC (2x KSM56E46BD8KM-32HA)
Intel XL710-BM1
Intel i350-T4
2x SSD with ZFS mirror

private user, no business use
November 12, 2023, 10:07:42 PM #1
See Firewall - Diagnostics - States - Actions.
November 12, 2023, 10:31:22 PM #2
I even rebooted the machine without luck. If it was a state issue the reboot should have solved it.
I want all services to run with wirespeed and therefore run this dedicated hardware configuration. Suricata is very demanding.

AMD Ryzen 9 9950X3D
ASUS Pro WS B850M-ACE SE
64GB DDR5 ECC (2x KSM56E46BD8KM-32HA)
Intel XL710-BM1
Intel i350-T4
2x SSD with ZFS mirror

private user, no business use
Print
Go Up Pages1
User actions