Hello all!
There must be something simple here. Please explain! Nothing is coming
from LAN to WAN.
*1.2.3-RC1* built on Wed Apr 22 15:45:47 EDT 2009 with carp on lan and wan.
LAN=em1
pass in quick on em1 all flags S/SA keep state label "USER_RULE: "
In logs I have:
pf: 1. 000562 rule 112/0(match): block out on carp0: (tos 0x0, ttl 63,
id 2596, offset 0, flags [DF], proto ICMP (1), length 84) 192.168.8.34 >
137.199.84.248: ICMP echo request, id 36366, seq 6130, length 64
Note: blocked as "out"! I can't see any rules fro carp interfaces:
# pfctl -sr | grep carp
anchor "carp" all
pass quick proto carp all keep state
# ifconfig carp0
carp0: flags=49<UP,LOOPBACK,RUNNING> metric 0 mtu 1500
inet 192.168.87.14 netmask 0xfffffff0
carp: MASTER vhid 1 advbase 1 advskew 0
# ifconfig carp1
carp1: flags=49<UP,LOOPBACK,RUNNING> metric 0 mtu 1500
inet 192.168.8.234 netmask 0xffffff00
carp: MASTER vhid 2 advbase 1 advskew 0
#
Evgeny.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
Commercial support available - https://portal.pfsense.org
