Firewall Preventing Connections To Linux Mint Servers

[WhatAMess]

My build is a couple weeks old, currently running Opnsense 25.7.11 and for the most part all is well....but my Linux Mint laptop and no longer access the Linux Mint servers for updates.  I've spent days trying various search results to no avail to correct this and finally gave up.  As an experiment I pulled my Opnsense router and reinstalled a TP-Link router and with it in place there is no problem.

My installation has very few firewall rules other than what is installed initially plus the ones Crowdsec and Intrusion Dection places.  I've looked through the extended firewall rules list using the (+) button to see if ports 80 and 443 have a block setting but my experience is limited in that regard.  An example is the connection error is "could not connect to security.unbuntu.com:80" and there  are bunch of similar type errors which prevent the updates.  Pings to the sites show the DNS is being resolved through Opnsense.

The laptop is trying to connect via wifi and all functions work except trying to do server updates.  Even connected directly via ethernet and same problem persists.

I am using DNSMasq DNS & DHCP.  My Opnsense upgrades work fine but have not moved to version 26.1 as yet.

Thanks for any guidance if you have the time to do so.

[nero355]

An example is the connection error is "could not connect to security.unbuntu.com:80" and there  are bunch of similar type errors which prevent the updates.
Pings to the sites show the DNS is being resolved through Opnsense.

Ping is nice, but what does Traceroute say ?! Where does the traffic stop ?

[WhatAMess]

Traceroute showed it reaching the destination.  Thanks for the reply.
Anyway, I browsed through all the configuration menus again and discovered in the NAT/Port Forwarding section a port 80 LAN rule to "redirect traffic to proxy". I edited it to "disable" and went back to the laptop and now everything works!  Not sure what it was for, I know I didn't write it but it sure was a nuisance.