Setting up OPT1 as a second LAN for security system rules
-
Good afternoon All,
I have been reading, rereading and I hate to admit I am still lost on how to accomplish what I am trying to do.
Basically I need help setting up OPT1 as a separate LAN network to put my Blue Iris PC on and keep the cameras/software from having access to internet.
I have a functioning VPN through IPSEC and want to use the VPN to access the Blue Iris software/UI3 web interface, but do not want the IP cameras to have access to the internet. I would like the PC to be able to access the internet for WIN and Dell command updates, but that would be the extent of access required.
Currently I have the PC dual NIC'd and created a fictious subnet, 10.0.3.1, to access the cameras when I VPN or RD into the PC on the main NIC, my primary subnet is 10.0.0.1.
Hoping this makes sense, what I am trying to ask for guidance for on how to accomplish this.
If more information is needed, please ask, I will answer what I can, this is not my strongest area of expertise.
V/R,
Tim -
Hey Tim...
I've had this problem... isolating subnets etc...
This is a common issue with firewalls and you can find out how to do this in the documentation...
Just substitute OPT with WLAN or IOT. Should be all the same.
https://docs.netgate.com/pfsense/en/latest/solutions/netgate-2100/opt-lan.htmlIf you want to isolate individual clients, it has to be done at the switch level.
You'll have to find a managed switch that suppoers this feature.;-)