• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Offline Firewall Rule Builder

Scheduled Pinned Locked Moved Firewalling
4 Posts 3 Posters 581 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • N
    nfld_republic
    last edited by nfld_republic Jul 11, 2020, 11:26 AM Jul 11, 2020, 11:25 AM

    Hi Folks - Over that last couple of years I have made changes, reconfiguration, experiments, etc. on my home network. While there are not many users, I guess my firewall rules are a little bit complex. Of course, there has been more than one misstep and now there are some "funky" things happening.

    I'd like to start fresh but want to minimize downtime (my spouse and son would not appreciate a full day with the network down ☺). I also host a couple of sites for a friend of mine (not critical but he has a number of users who visit his sites) that I would like to keep offline for a short as possible as well.

    So, the question: Is there a good offline firewall rule builder where I can create the firewall rules (and network interfaces and VLANs for that matter)? Something that I can set up the interfaces, etc., create the firewall rules, export the configuration and restore the configuration to the physical pfSense box?

    Thanks!

    D Q 2 Replies Last reply Jul 12, 2020, 6:57 PM Reply Quote 0
    • D
      DaddyGo @nfld_republic
      last edited by DaddyGo Jul 12, 2020, 7:07 PM Jul 12, 2020, 6:57 PM

      @nfld_republic

      Hi,

      PfSense does not have an offline rule(s), etc. builder.

      If you already have a smaller network as described + web server + etc..
      You may want to create a virtualized pfSense as a test environment.
      You can pre-configure, test, and if everything works well you can apply it live.

      In case you can keep the number of interfaces the physical type of hardware(s) "NIC", even for a virtualized environment, things will be even easier when migrating the configuration.

      @nfld_republic "I'd like to start fresh but want to minimize downtime (my spouse and son would not appreciate a full day with the network down ☺). I also host a couple of sites for a friend of mine (not critical but he has a number of users who visit his sites) that I would like to keep offline for a short as possible as well."

      and in the end you can keep both your family and your friend 😉

      ++++edit:
      we have a larger system so we keep real test units up for testing...
      a VM is perfect for your purposes
      (but we also have a VM☺ )

      Cats bury it so they can't see it!
      (You know what I mean if you have a cat)

      1 Reply Last reply Reply Quote 0
      • Q
        q54e3w @nfld_republic
        last edited by Jul 12, 2020, 7:02 PM

        @nfld_republic said in Offline Firewall Rule Builder:

        So, the question: Is there a good offline firewall rule builder where I can create the firewall rules (and network interfaces and VLANs for that matter)? Something that I can set up the interfaces, etc., create the firewall rules, export the configuration and restore the configuration to the physical pfSense box?

        Thanks!

        Seems like another pfSense machine, or VM would help.

        1 Reply Last reply Reply Quote 0
        • N
          nfld_republic
          last edited by Jul 12, 2020, 8:59 PM

          Thanks folks. Google University didn't turn anything up so I didn't think that there was much of a chance that one existed. What I was hoping for was a rule builder where I could have the same interface names, etc. and then simply upload the new configuration.

          Thanks anyway - appreciate it.

          1 Reply Last reply Reply Quote 0
          4 out of 4
          • First post
            4/4
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
            This community forum collects and processes your personal information.
            consent.not_received