Firewall rules confusion
-
Hi,
I have setup Pfsense on an APU Board with 3 LAN ports. IGB0 is WAN connected to internal LAN, so not exposed to the internet. IGB1 is used for WIN7 Clients. Clients from Win7 net are only supposed to connect to one server in WAN Net. The rule I created works so far. Besides that Clients should have acces to DNS, HTTP and HTTPS. I created some rules, but for some reason the client can't do a nslookup, nor reach http sites. I also installed SQUID and Squidguard on that APU.
Here are my rules
Does it matter, if rules are added in WAN or WIN7 Net as long as the rule itself is correct?
-
I found the solution. DHCP was activated on WIN Net. Client where getting IP of PFSENSE and PFSENSE could not resolve hostnames. COnfigred DHCP Server to give a different DNS Server to clients. But what makes me wonder is, why is PFSENSE not able to act as DNS for the DHCP clients?
-
Check https://docs.netgate.com/pfsense/en/latest/book/config/troubleshooting.html#dns-resolution-issues
-Rico