Traffic getting through a Block rule
-
Hi, I’m using pfSense at home and would like to stop the internet connection on my kids PC’s on a schedule. I’ve followed several forum posts and youtube videos and all say to add a firewall rule based on that schedule using the Action BLOCK with Source as my Kids PC ip’s (I’ve set up an Alias). Protocol is IP4/IP6 and Any Traffic, and I’ve selected both LAN and WAN. Direction is IN, Quick is Checked and Gateway is WAN_DHCP Gateway. I’ve tried this as a LAN rule and the above is my current Floating Rule setting. However, neither seems to fully stop all internet access on time. I say fully because even though the rule will block say access to google.com, my kids still have connection because they are able to chat and play with their friends on Fortnite while the Block is in effect (Eg., google is blocked, but chat still works). I’ve tested this several times and it’s quite puzzling.
One thing to note is I am using pi-hole instead of phSense to block certain sites and so their pc’s point to the pi-hole ip address for DNS calls. But I have included the address of the pi-hole in the Alias above.
Any ideas will be greatly appreciated!
-
@hammer8 Are the states still open? If so the connection will continue.
-
Show the rule(s) here.
And also make sure they can't connect otherwise. -
@bob-dig Hi, figured out the issue…states were still open and so the way to implement correctly is to have two rules. One that blocks traffic all the time and a second allow rule above the block which is on a schedule of when internet access is allowed. Thanks everyone!
