Am 15.09.2013 02:22, schrieb Chris Buechler: > On Fri, Sep 13, 2013 at 1:38 PM, Klaus Lichtenwalder > <[email protected]> wrote: >> Hi, >> >> in the last few weeks I experience the effect that my pfsense box >> suddenly blocks most of the outgoing traffic via the bogon rule. At >> least I interprete it that way: >> Sep 13 20:32:59 alix pf: 00:00:00.000133 rule 2/0(match): block out on >> pppoe0: (tos 0x0, ttl 63, id 60691, offset 0, flags [DF], proto TCP (6), >> length 638) >> Sep 13 20:32:59 alix pf: 188.174.130.182.36379 > >> 209.148.46.131.9001: Flags [P.], ack 3301271548, win 331, options >> [nop,nop,TS val 2350771209 ecr 928279666], length 586 >> > > Bogons cannot block traffic out of WAN. What rule actually blocked the > traffic? It's most likely normal out of state traffic if you aren't > actually having connectivity problems, though that seems like quite a > bit for any network where an ALIX is adequate.
I was under this asumption, as in RRD it's flagged as out-block, and on WAN Rule 2 is the bogons rule. But I remember. Rules are "going into the interface", not out... But the messages are "rule 2/0(match): block out on pppoe0"? How do I find out which rule is hit, then? I do have a 18Mbps/1Mbps link, with in getting max 12Mbps, but out being quite exactly those 1Mbps. I checked those connections (some, there were like 100K dropped packets... in the 1week RRD, it's 723MB blocked, with a maximum 561kbs) It's quote sporadic, though Klaus -- ------------------------------------------------------------------------ Klaus Lichtenwalder, Dipl. Inform., http://www.lichtenwalder.name/ PGP Key fingerprint: 9A3B 83AF B18E CEA0 C8DC 000D 8860 42B5 E5F6 7CAE _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
