Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Multiple Bridged Interfaces

    Firewalling
    3
    6
    2549
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jjepen last edited by

      I've got a bit of a problem understanding how to setup rules between multiple bridged interfaces.  Basically I want to limit the traffic between the bridged interfaces but it seems that whenever I setup anything other than an allow all rule on any of the bridged interfaces it stops all traffic between the interfaces.  My setup is as follows.

      WAN - Static IP Address, /24 subnet
      LAN - Not Used,
      OPT1 - Bridged with WAN
      OPT2 - Bridged with WAN
      OPT3 - Bridged with WAN
      OPT4 - Bridged with WAN

      When I setup rules on the WAN interface they work as I intend, (i.e. Allow HTTP Traffic to Web Server, SMTP to Mail Server, etc.) but when I put any rules on the OPT interfaces to limit traffic between them it seems to not work.

      Any ideas would be greatly appreciated.

      1 Reply Last reply Reply Quote 0
      • H
        hoba last edited by

        Multibridges don't work in the 1.0 branch. We already have some code in head where you can create bridging groups. This feature will appear in the next major version of pfSense.

        1 Reply Last reply Reply Quote 0
        • J
          jjepen last edited by

          Thanks, for your info.  One question now that I know why things aren't working.  I have rules on each of my bridged interfaces that allow all traffic, but do you forsee any problems arising out of this setup? (Assuming I leave things the way they are)

          1 Reply Last reply Reply Quote 0
          • H
            hoba last edited by

            Try enabling filtering bridge at system>advanced. However like I said earlier you setup is nsupported atm and the 1.0.x versions have not been designed to support this multibridge setup.

            1 Reply Last reply Reply Quote 0
            • S
              stevem last edited by

              @hoba:

              Multibridges don't work in the 1.0 branch. We already have some code in head where you can create bridging groups. This feature will appear in the next major version of pfSense.

              Is multiple bridging enabled in the 1.2Beta1 release?

              I ask because I'm having some quirks with a rather simple network layout.

              WAN (NAT, DHCP)
              |
              LAN (DHCP)
              |
              OPT1 (LAN2, bridged with LAN)
              |
              OPT2 (LAN3, bridged with LAN)
              |
              OPT3 (WLAN, bridged with LAN)

              The bridged interfaces don't allocate DHCP IPs from the LAN pool (x.x.x.100-199). Filtering bridge enabled. Filtering rules set. When each interface is set with its own subnet ie x.x.1.x, x.x.2.x, etc, all works fine. M0n0 works fine for bridging 2 LAN/WLAN. I'm attempting to avoid using a switch/AP & esp a WINS server…

              Any info would be appreciated. Great package, BTW.

              1 Reply Last reply Reply Quote 0
              • H
                hoba last edited by

                Multiinterfacebridging is not possible and won't be possible for 1.2.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post

                Products

                • Platform Overview
                • TNSR
                • pfSense Plus
                • Appliances

                Services

                • Training
                • Professional Services

                Support

                • Subscription Plans
                • Contact Support
                • Product Lifecycle
                • Documentation

                News

                • Media Coverage
                • Press
                • Events

                Resources

                • Blog
                • FAQ
                • Find a Partner
                • Resource Library
                • Security Information

                Company

                • About Us
                • Careers
                • Partners
                • Contact Us
                • Legal
                Our Mission

                We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

                Subscribe to our Newsletter

                Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

                © 2021 Rubicon Communications, LLC | Privacy Policy