Chris Buechler wrote: > On Wed, Feb 18, 2009 at 10:14 AM, Paul Mansfield > <[email protected]> wrote: >> I'm rehoming a monitoring box to a new address and I was checking our >> various pfSense firewalls would continue to work, and I noticed that >> there's no rule allowing access to UDP:161 for the LAN interface, in >> fact none of the interfaces even mention udp:161 and there's no other >> rule which would cover it. >> >> Please can you tell me how this still works? Is this an implicit/hidden >> rule? > > The anti-lockout rule allows traffic to the LAN IP. You can turn it > off under System -> Advanced.
in this case, the snmp probes are coming from a remote monitoring system which isn't on any of the directly connected networks, but are coming in to the LAN address. does this still count? --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
