Why is this ping not being blocked?

Started by RobLatour, July 20, 2024, 06:50:54 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
July 20, 2024, 06:50:54 AM
I've been working on this for hours, can you please help me figure out what am I missing?

Why is this ping not being blocked?

Here are screen shots of my ping and the rules.
https://ibb.co/P6PGcxS
https://ibb.co/qgyJcLK

I also tried disabling all the floating rules, but they had no impact on my test results.

Should the ping not be returning that it can't reach the destination?
July 20, 2024, 08:45:17 AM #1
There's no firewall for traffic on the same lan - unless you have one configured on each host.
July 20, 2024, 01:54:33 PM #2
Well well well, that would certainly explain it.  Thank you.
July 21, 2024, 11:53:02 AM #3
Those packets will never even hit the OPNsense firewall, your switch handles packets sent between computers on the same LAN.
July 21, 2024, 02:03:11 PM #4
Thanks for your observation, it really helped further solidify for me the reason that rules aren't evaluated between devices working under the same interface umbrella.

I was trying to 'protect' a particular device with an additional level of restrictions around it - that it to say allow some devices on my network interface to have access to it and others not.  In the end I just moved it to its own separate interface and from there I have been able to allow and restrict the accesses I wanted quite easily.

Print
Go Up Pages1
User actions