Add more rule sets
-
Hi all,
I have 3 (WAN, LAN, OPT1) interfaces in my PFsense server and about 50 firewall rule sets in my current configuration. Now, I need to add 7 mores interface (OPT2-OPT8) in my PFSense server and use the same rule set as OPT1 (35 x rule set). How can I clone the OPT1 rule set to another interface (OPT2-OPT5) quickly. Please advise. :D
-
I added that as a suggestion some years ago, to work with template groups. Interface groups don't always fix the problem. Recently, I tried to understand if "this firewall" (something you can add in a firewall rule) could be a solution, but it turned out I couldn't understand it.
So, as far as I know, there isn't any efficient way.
-
Would this help:
https://doc.pfsense.org/index.php/Interface_Groups -
Yes you could use an interface group, or maybe floating rules to do this. However you will still need to edit each rule on OPT1 and switch the interface to the group.
You could potentially edit the config file to do that which would be faster but far more open to typos. The rule order might also be compromised. You would need to test that to be sure.
Steve
