Multiple Bridged Interfaces
-
I've got a bit of a problem understanding how to setup rules between multiple bridged interfaces. Basically I want to limit the traffic between the bridged interfaces but it seems that whenever I setup anything other than an allow all rule on any of the bridged interfaces it stops all traffic between the interfaces. My setup is as follows.
WAN - Static IP Address, /24 subnet
LAN - Not Used,
OPT1 - Bridged with WAN
OPT2 - Bridged with WAN
OPT3 - Bridged with WAN
OPT4 - Bridged with WANWhen I setup rules on the WAN interface they work as I intend, (i.e. Allow HTTP Traffic to Web Server, SMTP to Mail Server, etc.) but when I put any rules on the OPT interfaces to limit traffic between them it seems to not work.
Any ideas would be greatly appreciated.
-
Multibridges don't work in the 1.0 branch. We already have some code in head where you can create bridging groups. This feature will appear in the next major version of pfSense.
-
Thanks, for your info. One question now that I know why things aren't working. I have rules on each of my bridged interfaces that allow all traffic, but do you forsee any problems arising out of this setup? (Assuming I leave things the way they are)
-
Try enabling filtering bridge at system>advanced. However like I said earlier you setup is nsupported atm and the 1.0.x versions have not been designed to support this multibridge setup.
-
Multibridges don't work in the 1.0 branch. We already have some code in head where you can create bridging groups. This feature will appear in the next major version of pfSense.
Is multiple bridging enabled in the 1.2Beta1 release?
I ask because I'm having some quirks with a rather simple network layout.
WAN (NAT, DHCP)
|
LAN (DHCP)
|
OPT1 (LAN2, bridged with LAN)
|
OPT2 (LAN3, bridged with LAN)
|
OPT3 (WLAN, bridged with LAN)The bridged interfaces don't allocate DHCP IPs from the LAN pool (x.x.x.100-199). Filtering bridge enabled. Filtering rules set. When each interface is set with its own subnet ie x.x.1.x, x.x.2.x, etc, all works fine. M0n0 works fine for bridging 2 LAN/WLAN. I'm attempting to avoid using a switch/AP & esp a WINS server…
Any info would be appreciated. Great package, BTW.
-
Multiinterfacebridging is not possible and won't be possible for 1.2.