Ad Schellevis
Ad Schellevis
@joni1993 ah, got it, missed that part in your initial comment, I'll take a look
@joni1993 can you try https://github.com/opnsense/core/commit/b0bf317640c17874fa781846a81a39e76517fc05 ?
the event shouldn't try to enforce routing, but if we only change the outer addressing, the inner shouldn't change anyway
this is more a generic log search thing, input is cleansed quite aggressively, given the low number of reports in the past, I don't think we should aim for accepting...
@bugoff rules haven't changed recently, you can use the "Automatically generated rules" button on the interface to see which automatic rules apply on an interface (and usually how to disable...
ssh lockout means X faulty logins dropping your connection, that can't be an issue, but if it is, you can inspect the alias mentioned in the rule.
best make sure to disable reply-to in the rule or in the advanced settings to prevent packets being send to the gateway address. I'm very sure you can allow access,...
for me this is a bit too vague, which use-case are we trying to solve with this?
A network diagram might help. If I understand you correctly you're forwarding traffic to hosts which are not allowed to access the internet unless being contacted from other networks.
I'm not sure this is a use-case for a captive portal to be honest. Maybe we can think of something to optionally whitelist traffic heading inbound to the zone, but...