11 Oct 2024 |
Luna 💎 | tcpdump does show the packets coming in, i know the request is being dropped somewhere but just to confirm the tcpdump output what am i looking for on each line to confirm it's being blocked? | 03:27:51 |
Luna 💎 | it's just this over and over until the connection times out
03:27:42.543796 IP 127.0.0.1.29563 > 127.0.0.1.8899: Flags [S], seq 2869557022, win 65228, options [mss 16344,nop,wscale 7,sackOK,TS val 1457228288 ecr 0], length 0
| 03:28:48 |
Luna 💎 | i did specify floating rules to explicity allow connections from / to 127.0.0.1 to be allowed in both directions, first match and to log the rule but nothing shows in the live log | 03:29:21 |
targetball | You should see the 127.0.0.1:random_curl_port > 127.0.0.1:http_server_port . If it after that it responds in reverse order then you know the http server got the curl packets through the firewall. | 03:31:02 |
targetball | It's been a while since I configured my opnsense firewall at work but the rule allowing access to localhost should be done with allowing traffic to the loopback interface rather than a specific IP. I'll try to look up a doc or something. | 03:33:57 |
Luna 💎 | the traffic is only going one way correct. I've just added a rule to allow all from any to any on loopback interface and still no joy but i might have added the rule incorrectly | 03:36:07 |
Luna 💎 | thats strange, when i add rules at the top of the floating rules for
pass in/out from 127.0.0.1 to 127.0.0.1 any port using the Null4 gateway
i stop seeing any output in tcpdump entirely | 03:44:09 |
Luna 💎 | if i disable those rules the output comes back, still no connection though | 03:44:37 |
targetball | I just saw this. Is there a service running on port 8899? You said you did curl earlier but the webui should be on port 80. | 03:46:09 |
Luna 💎 | there is a service running on 8899, it's not registering any connection attempts at all so the packets aren't reaching the port | 03:46:49 |
Luna 💎 | im also having the same connection issues when trying to connect to any TCP port listening on 127.0.0.1, not just my services. trying to ssh 127.0.0.1 and curl http://127.0.0.1 are just easier ways to reproduce the problem for others | 03:48:15 |
Luna 💎 | i get the same output in tcpdump when trying to use curl or ssh to talk to services via 127.0.0.1 | 03:49:21 |
targetball | Best of luck! I'm going to got to bed 💤 . The general troubleshooting thing i'd suggest is shutting off each of your firewall rules to see if that's the culprit. | 03:49:51 |
targetball | * Best of luck! I'm going to go to bed 💤 . The general troubleshooting thing i'd suggest is shutting off each of your firewall rules to see if that's the culprit. | 03:50:03 |
Luna 💎 | no worries, i'll dig a little deeper, hopefully i can find the solution. Thank you for the tips though, gives me something to work with 😎 | 03:51:11 |
Luna 💎 | you were right, one of my rules was causing the problem. after adjusting the rule everything is working fine 🥳 | 04:08:34 |
| @rp:mpfau.de joined the room. | 13:30:44 |
| @sauceee:matrix.org joined the room. | 16:57:23 |
12 Oct 2024 |
@sauceee:matrix.org | Yall tapn
https://t.me/+32cFzLuOiacxZmM0 | 12:49:37 |
| @sauceee:matrix.org left the room. | 16:02:53 |
| fbsd joined the room. | 23:54:36 |
13 Oct 2024 |
| fbsd changed their display name from geobarrod to gbr. | 01:01:45 |
| fbsd changed their display name from gbr to g. | 01:02:41 |
| fbsd changed their display name from g to fbsd. | 01:02:50 |
14 Oct 2024 |
| saucerr joined the room. | 16:01:25 |
saucerr | Cashapp
Apple Pay
Cpns
Dave method
Coinbase loading
Airb&b
Verizon
iPhone 15 method
Apple product method
Vermont Rent relief
Sba method
Carding
cc sites
Gas station Sauce ( free gas )
bank drops
Wells Fargo Loan sauce
Shein method
https://t.me/+32cFzLuOiacxZmM0 | 16:27:38 |
saucerr | Cashapp
Apple Pay
Cpns
Dave method
Coinbase loading
Airb&b
Verizon
iPhone 15 method
Apple product method
Vermont Rent relief
Sba method
Carding
cc sites
Gas station Sauce ( free gas )
bank drops
Wells Fargo Loan sauce
Shein method
https://t.me/+32cFzLuOiacxZmM0 | 16:36:45 |
Onno | MilkManzJourDaddy-OE: please ban the spammers | 21:30:35 |
15 Oct 2024 |
saucerr | Cashapp
Apple Pay
Cpns
Dave method
Coinbase loading
Airb&b
Verizon
iPhone 15 method
Apple product method
Vermont Rent relief
Sba method
Carding
cc sites
Gas station Sauce ( free gas )
bank drops
Wells Fargo Loan sauce
Shein method
https://t.me/+32cFzLuOiacxZmM0 | 09:15:18 |
| @rp:mpfau.de left the room. | 10:34:55 |