Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Adding firewall rule for a DNS record?

    Scheduled Pinned Locked Moved Firewalling
    3 Posts 2 Posters 223 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L Offline
      localhostx
      last edited by

      Hello, I wonder if there is any way to add firewall rule for a DNS record.

      There is device in LAN which has cloud functionalities. However, we want to limit them (actually block them). It is easy to add a firewall rule for that device to block all outgoing WAN traffic. However, we still need device to receive upgrades.

      The devices basically uses a domain (let's say update.device.com) to check updates. I can grant permission specific to the resolved IP of this DNS but it may be changed for some time later. Therefore, in needs continuous monitoring.

      Is there any way to do this automatically or any other workaround? Thanks

      1 Reply Last reply Reply Quote 0
      • johnpozJ Online
        johnpoz LAYER 8 Global Moderator
        last edited by

        create an alias that uses that FQDN, use that alias in your firewall rule vs the IP.. this by defaults updates every 5 minutes.

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 25.07 | Lab VMs 2.8, 25.07

        1 Reply Last reply Reply Quote 0
        • L Offline
          localhostx
          last edited by

          That helped me a lot. Many thanks

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.