Help with setting rules between 3 LANinterfaces and 1 Wan interface.
-
Hello!
I need some help with seting up some rules between LAN, Opt1 (DMZ) and Opt2 (Guest) and WAN
Setting will be like this:LAN –> access to any interface's
Opt1 (DMZ) --> Access from WAN
Opt2 (Guest) --> Access to WAN & WebGui on pfSenseI need also a rules that I have to switch on just to block WAN request to DMZ and Guest.
I'm also thinking about setting up a proxy in pfSense, can that be done? I will block everything with porn and Torrent on Guest with that proxy.
I hope some one out ther can help me.
Thanks
-
What ranges do you use on your interfaces?
On your LAN interface, create a policy that will allow traffic from all to all (you'll need a NAT rule too)
On your DMZ interface you'll need to create inbound NAT policies.
On your Guest interface, you'll need to create a policy that will allow access to the local interface (from any to Guest Address - should be in the drop down) , then another policy that will allow traffic from anywhere to (destination) 'NOT' (so tick the box to invert the selection) LAN Subnet- I personally use 192.168.0.0/24 and 192.168.8.0/24 and 192.168.10.0/24 on my network, so I create a policies to NOT 192.168.0.0/16 - so there is no cross network traffic allowed.
HTH - if you need any more clarification just ask…
-
When you are talking about NAT in this post you mean if someone need access to a computer behind the firewall in some cases?
I just see that you say it on LAN and DMZ interface