On 3/11/13 3:27 pm, Peder Rovelstad wrote:
Just a quick question for anyone who cares to reply, something I can't
figure out. I have the default "LAN -> Any" rule active on the LAN
interface, but I often see block entries such as those attached, in this
case from my kid's iPad to Google. Other times I see blocks from internal
hosts to servers like Akamai, for example. If the "Any" rule is active, why
would I see blocks? Thanks for reading.
I too would be interested in this. It does seem to be specifically
traffic going towards Google, and not general HTTP/HTTPS traffic to
Google search - it seems to be specifically sync services and the like -
in my case the source is nearly always either my Nexus 4 or Nexus 7.
Here's a snippet of my logs from the last few minutes:
Nov 3 15:31:36 LAN Default deny rule IPv4 (@3) 10.10.0.122:42880
173.194.66.103:443 TCP:FPA
Nov 3 15:31:35 LAN Default deny rule IPv4 (@3) 10.10.0.121:52018
173.194.66.106:443 TCP:FPA
Nov 3 15:31:21 LAN Default deny rule IPv4 (@3) 10.10.0.122:54125
173.194.41.71:443 TCP:FPA
(N7 is on .121, N4 is on .122)
If it's relevant, Google sync, app store, etc. seems to work fine with
both devices in question.
Kind regards,
Chris
--
This email is made from 100% recycled electrons
_______________________________________________
List mailing list
[email protected]
http://lists.pfsense.org/mailman/listinfo/list
