Rules: Block all 443 except for some IP

kapi2454 · Jun 3, 2017, 7:55 PM

Hi peolple!
I need some help, I need to block all web browser.
So I add this rule and work Fine, late I have to make an exception for google drive sinc.
I add other Googoe IP for testing, 64.233.190.132. But the pass rule doesn't work :(

This is the alias

Harvy66 · Jun 5, 2017, 12:20 PM

How do you know the rule it's working? Have you had the client machine connect to the IP addresses that your firewall is trying to allow? More than likely, the client is getting back a different set of IP(s) for their DNS record than your firewall.

kapi2454 · Jun 5, 2017, 12:30 PM

Thank for answer.
If I apply only the block rule. Google Drive sync tools stop working. And if I open the web browser. The page doesn't work. But for example TeamViewer and other tools keep working normally. It's means that the block on 443 port is working on that IP.

When I active the rule for pass some IP it doesn't work. I do a IP config /flushdns and only use an Google IP on web browser.

The rules on pfsense work like iptable? From the first top to bottom ?