Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Rule Set

    Scheduled Pinned Locked Moved General pfSense Questions
    6 Posts 4 Posters 1.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T Offline
      tomli
      last edited by

      Hi all,

      In the WAN, I have three rule sets.

      1. accept, udp, any, any
      2. accept, tcp, any, any
      3. accept, tcp/udp, any, any

      Is it any good way to classify which rule set is hit by my packet? (for example: iptables -Lv). I tried to use command "pfctl -vvsv", it is not easily to read.

      Please advise.

      Thanks,
      Tom

      1 Reply Last reply Reply Quote 0
      • GertjanG Offline
        Gertjan
        last edited by

        @tomli:

        In the WAN, I have three rule sets.

        1. accept, udp, any, any
        2. accept, tcp, any, any
        3. accept, tcp/udp, any, any

        First of all : why ? what are you trying to do ?
        This is so new, that even 'experts' won't be able to advise you …

        Normally ™ you have can have some rules on the WAN interface, that work together with some NAT rules so some devices on your LAN are accessible from the outside (the Internet).

        Btw : you found out that FreeBSD isn't 'linux' ;) ('iptables').

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        1 Reply Last reply Reply Quote 0
        • KOMK Offline
          KOM
          last edited by

          You realize that rules on WAN only affect unsolicited traffic coming into your WAN from the Internet?  Generally you do NOT put rules on WAN except to allow port forwards (for example) like Gertjan said.

          What is it that you're really trying to do?

          1 Reply Last reply Reply Quote 0
          • T Offline
            tomli
            last edited by

            Hi,

            Indeed, my firewall have a lot of rule sets which were configured by former colleagues. Now, I need to remove some rule set which are not use for a long time (or duplicated rule set).

            Thanks.

            1 Reply Last reply Reply Quote 0
            • M Offline
              mer
              last edited by

              At some point someone will say "please post screen shots of WAN, LAN, Floating, NAT rules. What packages are installed"

              1 Reply Last reply Reply Quote 0
              • KOMK Offline
                KOM
                last edited by

                I'd be happy of he would just answer the simple questions he's being asked, such as What is it that you're really trying to do?

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.