Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Restrict traffic between users on the same subnet/interface.

    Scheduled Pinned Locked Moved Firewalling
    4 Posts 3 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      fisk4
      last edited by

      Hi
      Im wondering if its possible to restrict traffic (block what kind of port/service) for example 192.168.0.2 and 192.168.0.3 can have?

      1 Reply Last reply Reply Quote 0
      • GruensFroeschliG
        GruensFroeschli
        last edited by

        No this is not possible with pfSense (or any firewall).
        For this you need switches that support VLANs or some other way of separating users on layer 2.

        We do what we must, because we can.

        Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

        1 Reply Last reply Reply Quote 0
        • F
          fisk4
          last edited by

          Yes now that you say it its obious, forgot like network 101.

          1 Reply Last reply Reply Quote 0
          • E
            Efonnes
            last edited by

            For doing it only with the pfSense box, it is only possible if it is a wireless interface acting as an access point or if you only use one port on the box per client that connects to it.  The former can be done by disabling the "allow intra-BSS communication" option and the latter probably isn't practical to do on the pfSense box itself.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.