Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Firewall rules exception for specific IP

    Scheduled Pinned Locked Moved Firewalling
    3 Posts 2 Posters 2.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      loop4633
      last edited by

      Hi guys,
      I'm new in pfsense, I've configured all but I would ask a question: there is any mode to create an exceptions for one or more ip in firewall rules? I've blocked facebook, but it's lock also whatsapp, can I exclude from this rule any ip?

      Thank you
      Best Regards

      1 Reply Last reply Reply Quote 0
      • V
        viragomann
        last edited by

        The rules are checked from top to the bottom for matching. If a rule matches it is applied and other rules are ignored.

        So if you want to allow traffic for one IP which is blocked in one of your rules, you may add an additional allow rule for this IP and put it above of the block rule.

        Another way is to use the "Invert match." option at source or destination in a firewall rule. With that you can exclude one address from matching and the rule is only applied to all other IPs than the one you've entered.

        1 Reply Last reply Reply Quote 0
        • L
          loop4633
          last edited by

          Thank's a lot. It's work!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.