Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Filtering/Closing WAN HTTP/HTTPS INBOUND PORTS on a 5g broadband device

    Firewalling
    1
    1
    143
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • myfamilydeservesbetterM
      myfamilydeservesbetter
      last edited by myfamilydeservesbetter

      Hi. I was wondering if someone can help me "narrow down" the way traffic is coming into my 5g WAN device from my pfsense mini pc.

      It seems that incoming traffic uses a random? port now, as the detailed firewall (system) logs show, the inbound ports for the WAN http are literally across the board from 10389 to the far limits of the range of possibility (up near the 65000s)

      I tried creating an alias with a floating firewall rule to narrow down these inbound http/https ports
      I have ALSO tried using a standalone floating firewall rulef or http traffic (TCP/UDP) to BLOCK all traffic from 10000-50000, for example. or even better, 10000-65000.

      I have the first 10,000 inbound ports secure, as well as all outbound ports when not in use.

      Does anyone have any experience with this sort of thing?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post