Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
18.1 Legacy Series
»
Identical traffic randomly matches different rules
« previous
next »
Print
Pages: [
1
]
Author
Topic: Identical traffic randomly matches different rules (Read 3646 times)
SlickNetAaron
Newbie
Posts: 2
Karma: 0
Identical traffic randomly matches different rules
«
on:
July 02, 2018, 01:05:15 am »
I installed OPNsense as a VM on ESXi 6.7 host
Host: i3 8100 (quad core), 32GB RAM, Mellanox ConnectX-2 10gb EN NIC
VM: 1 vCPU, 1 GB RAM, 40GB disk, 2 VMXNET3
WAN: Comcast XB3 gateway/AP
Disabled hardware CRC, TSO, LR, VLAN filtering
FYI, when I had IPv6 enabled, the whole system went bezerk continuously. I had it all typed out and lost my post...
But, when I disabled IPv6, the thing is acting mostly sane. The big issue I am seeing is that LAN-LAN traffic is getting randomly blocked. I even set a firewall rule to allow and log for my laptop IP and my ESXi host IP. It is really crazy because it randomly goes from getting allowed with my rule, allowed with "let out anything from firewall host itself" to getting denied by the Default Deny. See the screenshot. My laptop is 10.56.19.107
Any idea how this is even possible? Why does the same traffic hit match different rules randomly? I just have a static route from my LAN interface 10.56.19.0/25(twenty-five) over to 10.56.20.0/24
Thanks!
Aaron
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: Identical traffic randomly matches different rules
«
Reply #1 on:
July 02, 2018, 06:07:32 am »
Seems like asym routing. Is there a second device routing?
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
SlickNetAaron
Newbie
Posts: 2
Karma: 0
Re: Identical traffic randomly matches different rules
«
Reply #2 on:
July 03, 2018, 01:05:04 am »
Quote from: mimugmail on July 02, 2018, 06:07:32 am
Seems like asym routing. Is there a second device routing?
Brilliant! I had a default route on my L3 switch that wasn't what it should have been. Thank you for the pointer in the right direction!!
Logged
franco
Administrator
Hero Member
Posts: 17661
Karma: 1611
Re: Identical traffic randomly matches different rules
«
Reply #3 on:
July 03, 2018, 01:42:50 pm »
That was one smooth analysis, thanks Michael!
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
18.1 Legacy Series
»
Identical traffic randomly matches different rules