Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Block external access to office IP adddress

    Firewalling
    3
    3
    363
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      asifmalik last edited by

      We have created a NAT rule to our internal intranet server
      I need to allow only 2 or 3 external IP addresses to this over the internet

      How do I secure this port to only allow those ips?

      1 Reply Last reply Reply Quote 0
      • KOM
        KOM last edited by

        A port-forward is a NAT rule plus a firewall rule.  To restrict access to your NAT, simply specify proper sources.  Create an alias and then fill it with the IP addresses you want to allow, then use that alias as the Source on your WAN firewall rule.

        1 Reply Last reply Reply Quote 0
        • Derelict
          Derelict LAYER 8 Netgate last edited by

          Or use it as the source on your port forward rule and it will automatically propagate to the firewall rule in the default configuration where the firewall rule is created and tracked by the port forward.

          Chattanooga, Tennessee, USA
          The pfSense Book is free of charge!
          DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
          Do Not Chat For Help! NO_WAN_EGRESS(TM)

          1 Reply Last reply Reply Quote 0
          • First post
            Last post