<![CDATA[NIC interface "zones"?]]>Hi all

I'm looking into a Linux firewall OS and I need to have the "zones" feature which is in IPcop and Smoothwall, but they don't work fully with my hardware.

I need to have 6 zones each with their own rules relating to each other. (each zone would have their own NIC)
Red -> Internet
Blue -> Wifi only access to red
Yellow -> semi-trusted staff limited access to orange
Orange -> SQL Server and backups (limited access to internet) with secondary firewall
Green -> Admin
Purple -> NAS and Printers

So is that config possible with PFsense?

regards

stefan

]]>https://forum.netgate.com/topic/2994/nic-interface-zonesRSS for NodeFri, 12 Jun 2026 18:21:02 GMTTue, 02 Jan 2007 11:41:54 GMT60<![CDATA[Reply to NIC interface "zones"? on Sat, 13 Jan 2007 20:34:45 GMT]]>Create firewallrules at firewall>rules, new_interface_tab. You can setup DHCP server for this interface at services>dhcp server, new_interface_tab.

]]>https://forum.netgate.com/post/147315https://forum.netgate.com/post/147315Sat, 13 Jan 2007 20:34:45 GMT<![CDATA[Reply to NIC interface "zones"? on Sat, 13 Jan 2007 19:23:23 GMT]]>ok i've installed PFsense on an old box works fine with just a LAN and a WAN interface. I want to now add another LAN interface for an AP.
But when i assign the interface on the webgui the new interface configuration is for a WAN interface. How do i change that so it runs a DHCP server on it and acts like a LAN interface?

]]>https://forum.netgate.com/post/147311https://forum.netgate.com/post/147311Sat, 13 Jan 2007 19:23:23 GMT<![CDATA[Reply to NIC interface "zones"? on Wed, 03 Jan 2007 20:39:51 GMT]]>@kobos:

yar, clarity!

I'll be using this then!

Awesome! Spread the word to your IP-Cop and Smoothwall friends  ;D

]]>https://forum.netgate.com/post/146781https://forum.netgate.com/post/146781Wed, 03 Jan 2007 20:39:51 GMT<![CDATA[Reply to NIC interface "zones"? on Tue, 02 Jan 2007 15:27:42 GMT]]>yar, clarity!

I'll be using this then!

]]>https://forum.netgate.com/post/146721https://forum.netgate.com/post/146721Tue, 02 Jan 2007 15:27:42 GMT<![CDATA[Reply to NIC interface "zones"? on Tue, 02 Jan 2007 14:27:10 GMT]]>First set up and assign all interfaces (wither from the shell or from the webgui interfaces menu). Then add required firewallrules under firewall>rules. Each interface will appear as seperate tab. Firewallrules are always applied for incoming traffic and rules are applied top down. First match wins. At the bottom there is always an invisible "block anything" rule, so anything not explicitly allowed will be blocked. If you need seperate DHCP-Servers for each interface you can set them up at services>dhcp server (you'll find a tab for each interface there). I think the rest should be pretty clear once you start editing firewallrules.

]]>https://forum.netgate.com/post/146715https://forum.netgate.com/post/146715Tue, 02 Jan 2007 14:27:10 GMT<![CDATA[Reply to NIC interface "zones"? on Tue, 02 Jan 2007 13:51:47 GMT]]>linux = not freebsd = verbally slap myself… :)

how do i create rules for this / is there a tut?

]]>https://forum.netgate.com/post/146713https://forum.netgate.com/post/146713Tue, 02 Jan 2007 13:51:47 GMT<![CDATA[Reply to NIC interface "zones"? on Tue, 02 Jan 2007 12:28:04 GMT]]>Yes, Pfsense can do all that in a much simpler way :)

]]>https://forum.netgate.com/post/146712https://forum.netgate.com/post/146712Tue, 02 Jan 2007 12:28:04 GMT<![CDATA[Reply to NIC interface "zones"? on Tue, 02 Jan 2007 11:51:02 GMT]]>If you really want a Linux firewall pfSense is not suitable for you. It runs freebsd  :P

Besides that pfSense can handle any amount of interfaces (that your hardware can handle, I have heard from people using it with 12 interfaces already). It also doesn't have this unflexible classification for interfaces (like, green, red, orange, blue,…). You can setup any interface with custom rules.

So the answer (besides the Linux thing) is: Yes, pfSense can do all that.

]]>https://forum.netgate.com/post/146711https://forum.netgate.com/post/146711Tue, 02 Jan 2007 11:51:02 GMT