Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    A very simple Firewall question

    General pfSense Questions
    2
    4
    346
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      SayCheeze
      last edited by

      The only routers I've had experience with are Netgear routers.  When setting up my firewall for inbound traffic I can just add "block all".  I've just discovered PFSense, and I really like it.

      My very basic question is "Does Pfsense block all inbound traffic" on the WAN port by default?  I'm having a weee bit of difficulty understanding the page showing me inbound settings.

      I'm assuming that by default, it blocks all WAN incoming protocals, and allows all outbound LAN traffic.

      Professional Photographer
      RC Airplane Junky
      Tripping the life fantastic

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        Yes, everything is blocked by default. Only traffic that has rules to pass it will be allowed.

        The LAN interface is given a default allow all rule to make basic setup easier. Additional interfaces do not get that.

        Steve

        1 Reply Last reply Reply Quote 0
        • S
          SayCheeze
          last edited by

          I appreciate the info.  I'm still testing between it and my workstation only at this phase.  Kind of paranoid to just throw this router in the mix, and not really understanding at least the firewall portion.  I plan on replacing our netgear router with this box, once I feel comfortable with the security aspect.  So far, I like it.

          Professional Photographer
          RC Airplane Junky
          Tripping the life fantastic

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by

            I understand. It's pretty secure out the box, everything is denied on WAN, but you can add block rules or remove the default allow rule on LAN to tighten up outgoing traffic.

            Keep asking questions if you have them.  ;)

            Steve

            1 Reply Last reply Reply Quote 0
            • First post
              Last post