Need help dual wan - limited internet - website blocking



  • Hi,

    Hi, First of all i would like to thank the pfsense team for making a great firewall. I have setup a network which has 50 users on it, using 2 wan, load balance was successfully installed.  Now the problem is how do i set a firewall rule that will block certain sites, and rule must limit 20 users from not accessing the web but will have access to the local network. Squid does not work for multi wan (load balancing).  So i have no option but to use firewall rules.

    What i did was made an alias of websites using their ip add and and an ip add alias for 20 users.  How do i create a firewall rules for this to work?

    INTERFACE
    WAN
    OPT
    LAN

    Mulitwan - loadbalance

    ALIASES
    a1 - alias for the 20 users
    b1 - alias for the blocked websites

    Here are the rules that I made please correct me if im wrong, newbie here trying to learn pfsense.

    PROTO                      SOURCE                 PORT                 DESTINATION              PORT                    GATEWAY
    rule1 block   *                            a1                         *                       wan address                 *                         *
    rule2 block   *                            a1                         *                       opt address                   *                         *
    rule3 reject  *                           lan net                    *                       b1                             http                   loadbalance  
    rule4 allow   *                           lan net                    *                       *                                *                     loadbalance

    Is this the right thing/rule for the said project?  And what rules can I put in the firewall rules OPT tab?
    Need advise.

    Thank you.



  • Instead of creating more and more rules.
    Use Smoothwall as a content filter on different machine and use Advance Proxy abd URL Filter plugin,
    It will solve all your content filtering related issues.

    Until Pfsense doesnt work perfectly u can use that.



  • @rudraansh:

    Instead of creating more and more rules.
    Use Smoothwall as a content filter on different machine and use Advance Proxy abd URL Filter plugin,
    It will solve all your content filtering related issues.

    Until Pfsense doesnt work perfectly u can use that.

    I think pfsense works perfectly with me, but the problem is creating rules im not an expert on that.  But do you think the rules are correct? And thank you for the quick reply.


Log in to reply