FreeBSD 14 Firewall Passes ALL traffic!

Reply: Souji Thenria : "Re: FreeBSD 14 Firewall Passes ALL traffic!"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Dan Lists <lists.dan_at_gmail.com>
Date: Fri, 08 Aug 2025 16:13:12 UTC

We have a transparent (bridged) firewall that we have been using since
around 2015, maybe earlier.

After upgrading to FreeBSD 14 the firewall passes all traffic across the
bridge!  That is obviously VERY bad.

The firewall does block traffic to the server itself, but not traffic
passing on the bridge interface.

I've tested the exact same rules on FreeBSD 12 and 13 and they work fine.
I verified that the rules are the same, as well and the loaded kernel
modules.  I tried 14.0, 14.2, and 14.3 and all of them pass all traffic on
the bridge interface.

I looked at the release notes and I did not see anything that would cause
this.

I am at a loss on how to debug this.

Please Help!

Thanks