On Thu, Mar 22, 2012 at 12:17 AM, Chris Buechler <c...@pfsense.org> wrote: > > > That's not the same scenario you described in the previous thread > unless it's just not explained as thoroughly.
In the previous thread I included a second pfsense, but didn't mention it this time since the traffic in question doesn't touch it, unless I'm mistaken. > Jim's suggestion is > almost certainly the resolution for that one, Jim suggested that I "Bypass firewall rules for traffic on the same interface", but is not this a basic scenario of LAN>pfsense-NAT>WAN? There is no static route in use when the connection drops. > you have asymmetrically > routed traffic in that scenario which you cannot statefully filter, > eventually the TCP connection will be dropped. I'll have to chew on that. I didn't think I had an asymmetric routing situation, but it's possible that I created one inadvertently. Thanks for your reply. db _______________________________________________ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list