A very simple Firewall question
-
The only routers I've had experience with are Netgear routers. When setting up my firewall for inbound traffic I can just add "block all". I've just discovered PFSense, and I really like it.
My very basic question is "Does Pfsense block all inbound traffic" on the WAN port by default? I'm having a weee bit of difficulty understanding the page showing me inbound settings.
I'm assuming that by default, it blocks all WAN incoming protocals, and allows all outbound LAN traffic.
-
Yes, everything is blocked by default. Only traffic that has rules to pass it will be allowed.
The LAN interface is given a default allow all rule to make basic setup easier. Additional interfaces do not get that.
Steve
-
I appreciate the info. I'm still testing between it and my workstation only at this phase. Kind of paranoid to just throw this router in the mix, and not really understanding at least the firewall portion. I plan on replacing our netgear router with this box, once I feel comfortable with the security aspect. So far, I like it.
-
I understand. It's pretty secure out the box, everything is denied on WAN, but you can add block rules or remove the default allow rule on LAN to tighten up outgoing traffic.
Keep asking questions if you have them. ;)
Steve
