Aliet Santiesteban Sifontes wrote:
Hi, all I'm using a new installed pfsense 1.2.1 with three attached
newtoks, wan, lan and optional 1, I have defined rules on lan
interface to allow all outgoing connections on that interface, but
everything is blocked, a test in dns server query shows this on pftop:
udp In 200.55.176.170:58829 192.58.128.30:53
NO_TRAFFIC:SINGLE 00:00:05 00:00:55 1 64
udp Out 200.55.176.170:58829 192.58.128.30:53
SINGLE:NO_TRAFFIC 00:00:05 00:00:55 1 64
udp In 200.55.176.170:30462 192.58.128.30:53
NO_TRAFFIC:SINGLE 00:00:03 00:00:57 1 64
udp Out 200.55.176.170:30462 192.58.128.30:53
SINGLE:NO_TRAFFIC 00:00:03 00:00:57 1 64
If I disable the firewall it works everything as expected, I saw this
post googling:
http://lists.freebsd.org/pipermail/freebsd-pf/2006-June/002260.html
That's not related, you aren't going to have IP options fields in your
DNS traffic. The only thing that legitimately uses IP options today is
PIM and IGMP, as the person who posted that was using.
What you're seeing though I'm not sure, if something as simple as DNS
passing through 1.2.1 didn't work we would have heard about it long ago
and I wouldn't be able to send this email. Are you seeing any drops in
your firewall logs?
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
