Re: [pfSense-discussion] Cannot Save changes in /tmp/rules.debug
Hallo Chris, Yes, changing PF Rules. GUI doesn't seem to work, i already set allow all for all interface. Might be PFSense creates new interface called bridge 0 which is not yes define any of rule. And not yet listed in firewall interface. Please advise. a. r. isnaini r.sutan Chris Buechler wrote: On Fri, Apr 10, 2009 at 9:00 PM, RI 1 / ipv6.or.id risna...@ipv6.or.id wrote: Hi, I just worked with PFSense lately. Why can't I save any changes made to /tmp/rules.debug file due to web interface firewall doesn't seem to work ? It's always after a while back to block default deny rule or after the box restarted. Not sure if I understand what you're saying, but it sounds like you're making manual changes to the PF ruleset. You can't do that, all the rules must be entered in the GUI. - To unsubscribe, e-mail: discussion-unsubscr...@pfsense.com For additional commands, e-mail: discussion-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: discussion-unsubscr...@pfsense.com For additional commands, e-mail: discussion-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense-discussion] Cannot Save changes in /tmp/rules.debug
On Sat, Apr 11, 2009 at 11:52 AM, RI 1 / ipv6.or.id risna...@ipv6.or.id wrote: Hallo Chris, Yes, changing PF Rules. GUI doesn't seem to work, i already set allow all for all interface. It works fine, you're seeing something else like out of state traffic or asymmetrically routed traffic. If you want to allow all, disable the filter under System - Advanced. Might be PFSense creates new interface called bridge 0 which is not yes define any of rule. There is no filtering on bridge interfaces. - To unsubscribe, e-mail: discussion-unsubscr...@pfsense.com For additional commands, e-mail: discussion-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense-discussion] Cannot Save changes in /tmp/rules.debug
OK Chris, so for bridge only SNORT can be enabled, CMIIW. Thanks a lot. RI 1 Chris Buechler wrote: On Sat, Apr 11, 2009 at 11:52 AM, RI 1 / ipv6.or.id risna...@ipv6.or.id wrote: Hallo Chris, Yes, changing PF Rules. GUI doesn't seem to work, i already set allow all for all interface. It works fine, you're seeing something else like out of state traffic or asymmetrically routed traffic. If you want to allow all, disable the filter under System - Advanced. Might be PFSense creates new interface called bridge 0 which is not yes define any of rule. There is no filtering on bridge interfaces. - To unsubscribe, e-mail: discussion-unsubscr...@pfsense.com For additional commands, e-mail: discussion-h...@pfsense.com Commercial support available - https://portal.pfsense.org - To unsubscribe, e-mail: discussion-unsubscr...@pfsense.com For additional commands, e-mail: discussion-h...@pfsense.com Commercial support available - https://portal.pfsense.org
