Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Help, what's wrong with my rules?

    Scheduled Pinned Locked Moved
    Firewalling
    3
    4
    1.6k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      cruzades
      last edited by

      i wish to block 'ranports' (5001-5502) to use my WAN2 if my 2 connections are active.

      upon checking the activity status while loading software that uses those ports, it seems that it still connecting to my WAN2.

      help me to where do I need to put those rules before of what rule?

      thanks

      1 Reply Last reply Reply Quote 0
      • GruensFroeschliG
        GruensFroeschli
        last edited by

        Rules are processed top to down.
        If a rule catches the rest below it is no longer considered. You have to place your block rules above your allow rules.

        We do what we must, because we can.

        Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

        1 Reply Last reply Reply Quote 0
        • C
          cruzades
          last edited by

          thanks for the head up sir.

          i made some changes with the rules, i guess it serves what i need.

          wherein:

          WAN2 gateway = 192.168.224.1
          WAN1_WAN2_allow_ports = ports the will pass either tru WAN1 or WAN2
          ranports = ports that are explicitly to use WAN1 only

          are my rules correct?

          thanks again

          1 Reply Last reply Reply Quote 0
          • dotdashD
            dotdash
            last edited by

            Seeing as how source ports are generally random, you probably only want to be filtering on destination port.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post