Routing from LAN/OPT1/OPT2 to WAN



  • I have configured 3 different networks in pfsense and I want them to route out of the WAN network which will end up being a DHCP internet connection. Does a general setup article exist or would someone be able to point me in the right direction?


  • LAYER 8 Rebel Alliance

    If your Interfaces are already configured properly you just need to create your Firewall Rules and done. Basically you could just copy the default Rule pfSense created for you in the LAN Tab to your other Interfaces.

    -Rico



  • Will I need another policy to deny traffic from OPT1 and OPT2 to only be able to go out to the WAN vs see anything on each of their networks too?


  • LAYER 8 Rebel Alliance

    Yes if you want to block Traffic to other local networks you need to block or reject (I prefer to reject from internal networks).
    There are several ways to accomplish this, mostly I just use as my Destination Firewall Rule Invert Match and choose the RFC1918 alias I have created.
    Above this Rule you need to make sure to allow DHCP and DNS to the Firewall, otherwise this traffic will also be blocked by the any to !RFC1918 Rule.

    -Rico



  • I just created a specific reject rule to each other network which works.


Log in to reply