Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Stoping one computer seeing the router page or other computers?

    Scheduled Pinned Locked Moved General pfSense Questions
    5 Posts 4 Posters 573 Views 4 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J Offline
      josephchrzempiec
      last edited by

      Hello I'm new to pfsense still. I was wondering if there was a way if a computer can still reach the internet and remote desktop But not reach the router page or other computers on the network. Is this posible a howto? I'm sorry I'm not much of a programmer but I'm learning.

      Joseph

      L 1 Reply Last reply Reply Quote 0
      • J Offline
        jgraham5481
        last edited by

        First, create a rule on the interface this computer in question is on, allowing the devices you want to hit the page, to hit it. You may have to do this on multiple interfaces. Then on settings -> advanced -> admin access check the box that says "Disable webConfigurator anti-lockout rule". save and good. Just make sure you have your proper allow rules, in place and at the top of your rule list, before disabling this, else you'll be consoling in to roll-back.

        L 1 Reply Last reply Reply Quote 0
        • L Offline
          lnguyen @josephchrzempiec
          last edited by

          @josephchrzempiec Yes if you put it on another VLAN/Subnet.

          1 Reply Last reply Reply Quote 0
          • L Offline
            lnguyen @jgraham5481
            last edited by lnguyen

            @jgraham5481 That won't stop east to west traffic from and to the computer in question--unless he has a managed switch that can apply private VLANs per switchport. However it will prevent access to the router mgmt web interface.

            GertjanG 1 Reply Last reply Reply Quote 0
            • GertjanG Offline
              Gertjan @lnguyen
              last edited by

              @josephchrzempiec said in Stoping one computer seeing the router page or other computers?:

              a computer can still

              A computer does nothing.
              What OS ?
              If you use W10, set your network type to Public (not Private).

              On the interface of pfSense, put a firewall rule on top, blocking the IPv4 of that PC.

              0d5196ca-c5e8-466d-b338-461ffd9f41a1-image.png

              Do you use the https GUI access ? Then block https also.
              Same for SSH.

              Btw : later on you discover that you should probably also block the IPv6 from your PC.
              That's probably the moment you should put this PC on a separate OPTx network.

              No "help me" PM's please. Use the forum, the community will thank you.
              Edit : and where are the logs ??

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.