Best Practice for Firewall Rules?
-
Configure on Inbound Interface?
Configure on Outbound Interface?
Both?
I'm assuming it's a bit of a mixture, but asking more as a best practice to ensure things are easy to manage in the long term when things get more complex.
Any handy guides / reference material that can be researched further that would be handy.
Likewise, any handy guides / reference material for how to debug when things should be working but aren't.
Regards
Michael -
@michaelcropper There are a few posts in this thread that should help.
https://forum.netgate.com/post/1042405
-
@michaelcropper Rules are evaluated when traffic arrives on an interface.
Floating rules are more complicated but can handle other types.
https://docs.netgate.com/pfsense/en/latest/firewall/floating-rules.html