When examin the behavior i looked at the firewall table i observe a strange behavior:
The last Firewall-Rule in INPUT and FORWARD Chain drops and logs all packets.
The Log Prefix are: "INPUT LAST RULE" and "FORWARD LAST RULE"
When I examine the LOG I see the following entries
Code: Select all
15:45:21 firewall,info INPUT LAST RULE input: in:br-lan out:(unknown 0), src-mac b8:27:eb:69:2e:21, proto TCP (SYN), 192.168.66.130:48362->45.93.106.241:80, len 60
...[40 identical entries] ....
15:46:10 firewall,info INPUT LAST RULE input: in:br-lan out:(unknown 0), src-mac b8:27:eb:69:2e:21, proto TCP (SYN), 192.168.66.130:48344->45.93.106.241:80, len 60
- Why was this Packet processed by the INPUT-Chain?
- The Destination Adress belongs to the internet and should be FORWARDED.
- Why is the out-Interface unknown
Here the routing table:
Code: Select all
DAv 0.0.0.0/0 PPPoE 1
DAc 185.39.84.13/32 PPPoE 0
DAc 192.168.23.0/24 br-iot 0
DAc 192.168.42.0/24 br-guest 0
DAc 192.168.66.0/24 br-lan 0
DAc 192.168.88.0/24 wg-road 0
