Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
18.1 Legacy Series
»
Strange firewall filtering behavior
« previous
next »
Print
Pages: [
1
]
Author
Topic: Strange firewall filtering behavior (Read 3605 times)
nqnguyen2
Newbie
Posts: 13
Karma: 0
Strange firewall filtering behavior
«
on:
February 14, 2018, 06:51:12 am »
I'm noticing some funky behavior. Has anyone experienced something similar? Do I need to reboot the firewall? Do I need to wipe clean and start over with fresh configs?
OPNsense version: OPNsense 18.1.1-amd64
Last reboot: 1.5 days ago
Rules are as simple and basic as I can make it
Brother's IP is in the pfTables and still in the tables right now
Brother was able to access services from WAN to my LAN for several days
Didn't make any changes to firewall
Today, the same IP he's been using for the past few days doesn't get filtered by the "allow" rule but instead gets filtered by the Default Deny rule. Thus, he was blocked for some strange reason despite no changes made.
I'm at a total loss and I'm assuming it's my configs that's broken.
Logged
dcol
Hero Member
Posts: 635
Karma: 51
Re: Strange firewall filtering behavior
«
Reply #1 on:
February 14, 2018, 10:16:45 pm »
I have seen this usually after I have moved around a bunch of rules. Try a Firewall>Diagnostics>state reset
Also, if you are using IDS/IPS try disabling it to see if that is doing the blocking.
Logged
Ciprian
Sr. Member
Posts: 284
Karma: 50
Re: Strange firewall filtering behavior
«
Reply #2 on:
February 15, 2018, 09:50:57 am »
After that, if IPS is not in the way and IPs are still blocked, activate log for every FW rule you have: by default, on custom rules the logging is not ON, so it's difficult to see which packet matches a particular rule, and vice-versa.
Logged
nqnguyen2
Newbie
Posts: 13
Karma: 0
Re: Strange firewall filtering behavior
«
Reply #3 on:
February 15, 2018, 10:48:35 pm »
I cleared the states but had an opportunity to reboot also. I did both and everything appears to be normal again.
Thanks for the assistance everyone.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
18.1 Legacy Series
»
Strange firewall filtering behavior