Will changing router IP change all ips in firewall rules?
-
I have a situation where I am looking at changing the router subnet from 192.168.1.1 to 192.168.100.1, and I have allot of rules in the firewall.
If I change the pfsense IP is there an easy way for all the ips in the rule section to be changed to the new 192.168.100.X automatically?
-
That depends on how you wrote your rules.
If your LAN is 10.0.0.0/24 and you use in the default rule on the LAN as "source": "subnet: 10.0.0.0/24"
Then yes you will need to rewrite all your rules.However if you use as "source": "subnet: lan-subnet" then you wont have to change the rule.
-
I'm new to this so bear with me :D
An example of a rule from the pfsense box right now is something like this:
Proto Source Port Destination Port Gateway Schedule
TCP * * 192.168.1.15 13500 *In NAT its:
If Proto Ext. port range NAT IP Int. port range Description
WAN TCP 13500 192.168.1.25 (ext.: 67.69.12.98) 13500
our LAN is 192.168.1.1 / 24
-
Use aliases in your rules.
Like this you only have to change the alias.