Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Rule not working, please help

    Firewalling
    2
    3
    323
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      furom
      last edited by

      Hi,
      I have a very simple rule. I want it to

      • block anything to the firewall & anything to an RFC1918 destination.
      • list itemallow DNS to the firewall
      • list itemallow internet

      So I made this, but it will not allow DNS to work. What do I miss please? I tried to rearrange, but good practice is to start with blocking rules, right? Then allow what you need?
      cfc302d3-a2fa-483d-9b10-e9bb2faba050-image.png

      Thanks

      L 1 Reply Last reply Reply Quote 0
      • L
        lcbbcl @furom
        last edited by

        @furom The rule for dns should be on top.
        By blocking all trafic to the pfsense will include your local dns

        F 1 Reply Last reply Reply Quote 1
        • F
          furom @lcbbcl
          last edited by

          @lcbbcl Agreed, makes sense when put like that. I somehow got the idea that I could first block everything and then open this, but obviously got it wrong. Thanks for quick response!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post