Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
24.7, 24.10 Production Series
»
Issue with NAT Rule Description and "Default deny / state violation rule" Label
« previous
next »
Print
Pages: [
1
]
Author
Topic: Issue with NAT Rule Description and "Default deny / state violation rule" Label (Read 313 times)
oezay
Newbie
Posts: 4
Karma: 0
Issue with NAT Rule Description and "Default deny / state violation rule" Label
«
on:
November 04, 2024, 10:51:35 am »
Hi everyone,
I have created a NAT rule, and it works as expected. However, in the live view, the allowed connections are displayed in green and marked as allowed, but they are labeled as "Default deny / state violation rule." Some connections are forwarded to the internal host but are still shown as blocked in the live log with the "Default deny / state violation rule" label.
I've noticed that if the initial incoming packets arrive on the primary WAN IP, the label remains blank. However, when packets come in on the virtual IP on the WAN interface, the "Default deny / state violation rule" label is applied.
Has anyone encountered this issue or know how to ensure that the correct description specified in the NAT rule is displayed in the live view? This behavior occurs both with associated rules and with explicitly created firewall rules.
Thank you for your support!
oezay
«
Last Edit: November 04, 2024, 11:15:37 am by oezay
»
Logged
guenti_r
Jr. Member
Posts: 59
Karma: 0
Re: Issue with NAT Rule Description and "Default deny / state violation rule" Label
«
Reply #1 on:
November 07, 2024, 07:29:07 am »
Sadly to say, i have the same issue but no solution.
The Firewall live view (Labels) are simply wrong displayed.
Logged
siga75
Full Member
Posts: 187
Karma: 11
Re: Issue with NAT Rule Description and "Default deny / state violation rule" Label
«
Reply #2 on:
November 25, 2024, 04:08:50 pm »
same issue here, from a port forward auto generated rule, see attachments
Type opnsense
Version 24.7.9_1
Architecture amd64
Commit b41ccdc9f
Mirror
https://opnsense-mirror.hiho.ch/FreeBSD:14:amd64/24.7
Repositories OPNsense (Priority: 11)
Updated on Sat Nov 23 15:12:18 CET 2024
Checked on N/A
Logged
https://www.signorini.ch
Protectli Pfsense Mi7500L6 Intel 7Th Gen Core I7 7500U 16Gb Ddr4 Ram
512Gb Msata Ssd
6 X Intel Gigabit Ethernet
Monviech (Cedrik)
Global Moderator
Hero Member
Posts: 1688
Karma: 181
Re: Issue with NAT Rule Description and "Default deny / state violation rule" Label
«
Reply #3 on:
November 25, 2024, 04:10:42 pm »
https://github.com/opnsense/src/issues/223
Logged
Hardware:
DEC740
siga75
Full Member
Posts: 187
Karma: 11
Re: Issue with NAT Rule Description and "Default deny / state violation rule" Label
«
Reply #4 on:
November 25, 2024, 04:23:43 pm »
glad they working on it, well in my case it's not empty, but with a label of another rule, but it's almost sure the issue is the same, or related
thx
Logged
https://www.signorini.ch
Protectli Pfsense Mi7500L6 Intel 7Th Gen Core I7 7500U 16Gb Ddr4 Ram
512Gb Msata Ssd
6 X Intel Gigabit Ethernet
guenti_r
Jr. Member
Posts: 59
Karma: 0
Re: Issue with NAT Rule Description and "Default deny / state violation rule" Label
«
Reply #5 on:
November 25, 2024, 04:25:28 pm »
Just for the records:
https://forum.opnsense.org/index.php?topic=43625.msg217188#msg217188
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
24.7, 24.10 Production Series
»
Issue with NAT Rule Description and "Default deny / state violation rule" Label