Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Default block rule

    Firewalling
    3
    4
    2422
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      subfire91 last edited by

      Hi,

      Do i need the default block rule    ***  *  *  *  block** at the bottom of the rule list or it just blocks everything that doesnt have an allow related rule?

      thnx

      1 Reply Last reply Reply Quote 0
      • X
        XIII last edited by

        pfSense is set up to block everything by default on the WAN, LAN has default allow, so LAN devices can access anything and WAN devices cant, also its top down for rules so if you have a block rule at the top but an allow rule below that, block all takes priority.
        What are you trying to do?

        -Chris Stutzman
        Sys0:2.0.1: AMD Sempron 140 @2.7 1024M RAM 100GHD
        Sys1:2.0.1: Intel P4 @2.66 1024M RAM 40GHD
        freedns.afraid.org - Free DNS dynamic DNS subdomain and domain hosting.
        Check out the pfSense Wiki

        1 Reply Last reply Reply Quote 0
        • S
          subfire91 last edited by

          i was trying to figure out whether to add or not a default block rule. i added one on lan.

          1 Reply Last reply Reply Quote 0
          • K
            kpa last edited by

            You don't need add  a default block rule on LAN, the LAN interface is "block everything" by default just like any other interface.

            What XIII says about "allow all" on LAN isn't quite correct, on the default configuration there is an "allow all" rule on LAN interface that allows all traffic but that rule isn't hidden and can be changed or deleted.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post

            Products

            • Platform Overview
            • TNSR
            • pfSense
            • Appliances

            Services

            • Training
            • Professional Services

            Support

            • Subscription Plans
            • Contact Support
            • Product Lifecycle
            • Documentation

            News

            • Media Coverage
            • Press
            • Events

            Resources

            • Blog
            • FAQ
            • Find a Partner
            • Resource Library
            • Security Information

            Company

            • About Us
            • Careers
            • Partners
            • Contact Us
            • Legal
            Our Mission

            We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

            Subscribe to our Newsletter

            Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

            © 2021 Rubicon Communications, LLC | Privacy Policy