opnsense blocks all LAN traffic to the outside

[Toolin44]

Hello everyone,

Since a few days I have a problem, opnsense blocks all LAN traffic to the outside.
Any ideas.

[Toolin44]

help !!!!

[chemlud]

How???

[Toolin44]

here is a screen shot :

https://image.noelshack.com/fichiers/2018/23/1/1528115096-sans-titre.png

[marjohn56]

Can you post ALL your rules please, LAN and WAN.

[Toolin44]

rules LAN and WAN

[marjohn56]

Yes, well that does not tell me much as all the WAN stuff is redacted. ???


Whatever. it appears there are no strange blocks that I can see, but there are few things to look at.


Let's start with some diagnostics... try this, do you get a response?

[Toolin44]

here is an example :


I allowed all the external connection to my controller unified, but the firexall blocks most of connection

[marjohn56]

I assume what I see there is the port forward rule...


What about the associated rule in the firewall WAN rule settings?

[Toolin44]

here is the firewall WAN rule settings

[marjohn56]

Yep.. I cannot see anything wrong there. Try deleting the 8080 rule and creating it as a floating rule, see if that works.

[Toolin44]

I have all tried, there is not only problem. Also when i connect in ssh on a remote server it blocks me....


example : I allowed all outgoing LAN traffic, but it blocks as even the outgoing traffic (it's variant)

[marjohn56]

SSH is not open by default on the WAN interface, and I don't advise you do so. If you want to connect remotely to the firewall the secure method is to use VPN and then use a SSH.

[Toolin44]

sorry, I'm talking about connecting to a VPS on ssh

[marjohn56]

If you like, you can pm me your rules.debug file, I'll see if there is something there I may be missing when looking at your rules.