pfsense appears to be swatting incoming packets like flies

Question

bored-island-21407 · Answer

For netclient outgoing TCP 443 and all udp incoming allow all established connections udp and TCP

quick-doctor-89338 · Answer

hm okay

quick-doctor-89338 · Answer

i think i m just having an emotional time with that rule because we had a major intrusion a few days ago

quick-doctor-89338 · Answer

fresh WAN facing pfsense is my fort knox moment

jolly-london-20127 · Answer

Maybe better to turn off UDP hole punching in that machine and use a static port

quick-doctor-89338 · Answer

yeah i think i will try that

quick-doctor-89338 · Answer

only thing listening on that port will be wireguard anyway

quick-doctor-89338 · Answer

is there a way to disable hole punching per node or is the setting for the entire network

jolly-london-20127 · Answer

yes you can do per node

jolly-london-20127 · Answer

just click on node edit and turn the switch

jolly-london-20127 · Answer

Dynamic Port

quick-doctor-89338 · Answer

ah gotcha

quick-doctor-89338 · Answer

brilliant thanks

quick-doctor-89338 · Answer

for anyone searching for netmaker and pfsense issues i suspect port randomization default in pfsense is causing issues