Guest LAN block web management and SSH management access



  • Hi all,

    I have created a new Guest Network PFsense Router.  I have manged to block access to my Main LAN and Wifi LAN.

    I have a need to block any block access to the web management and SSH management ports  guest network but still allow internet access.

    Please my rules below

    Firewall
    tumblr image hosting

    Can any please advise on how to block web management and SSH management access



  • Pack all your internal subnets (Guest also) into an alias and use this as destination with "invert" checked in your allow rule for guests.

    Or even better in my opinion, add all RFC1918 networks to an alias and use this one instead. So you haven't to care if you add or change a network in the future.


Log in to reply