pfsense appears to be swatting incoming packets li...
# clientq
quick-doctor-89338
07/08/2022, 10:44 PMpfsense appears to be swatting incoming packets like flies
b
bored-island-21407
07/08/2022, 10:46 PMFor netclient: outgoing TCP 443 and all udp. incoming allow all established connections (udp and TCP)
q
quick-doctor-89338
07/08/2022, 10:47 PMhm, okay
quick-doctor-89338
07/08/2022, 10:47 PMi think i'm just having an emotional time with that rule because we had a major intrusion a few days ago
quick-doctor-89338
07/08/2022, 10:50 PMfresh WAN facing pfsense is my fort knox moment
j
jolly-london-20127
07/08/2022, 11:11 PMMaybe better to turn off UDP hole punching in that machine and use a static port?
q
quick-doctor-89338
07/08/2022, 11:14 PMyeah i think i will try that
quick-doctor-89338
07/08/2022, 11:14 PMonly thing listening on that port will be wireguard anyway
quick-doctor-89338
07/08/2022, 11:15 PMis there a way to disable hole punching per node, or is the setting for the entire network?
j
jolly-london-20127
07/08/2022, 11:16 PMyes you can do per node
jolly-london-20127
07/08/2022, 11:17 PMjust click on node, edit, and turn the switch
jolly-london-20127
07/08/2022, 11:17 PM"Dynamic Port"
q
quick-doctor-89338
07/08/2022, 11:18 PMah, gotcha
quick-doctor-89338
07/08/2022, 11:18 PMbrilliant, thanks
quick-doctor-89338
07/09/2022, 2:13 AMfor anyone searching for netmaker and pfsense issues, i suspect port randomization (default?) in pfsense is causing issues
2 Views