Firewall LAN Rules



  • Thanks to all of you to giving best solution.

    I am using pfSense 2.0 RC3. All is working fine. By default, firewall allow everything on LAN. I want to restrict it. I want to allow only http, https. I am not able to do this. Kindly tell me that what are the default minimum ports required by pfsense to work properly. I want to allow ftp, http, https only. Because my users are bypassing squidgaurd firewall by using https connection.

    Kindly guide me.

    Thanks in advance.



  • Create alias with following ports
    21(ftp), 53(dns), 80 & 443

    name it whatever you like
    then create rule (on LAN) with this alias in destination, you should use tcp/udp protocols
    disable default allow rule and test



  • As mentioned, I have created the alias, but during creating rule on LAN, I am not able to see my Alias name any where. Please guide.

    @Metu69salemi:

    Create alias with following ports
    21(ftp), 53(dns), 80 & 443

    name it whatever you like
    then create rule (on LAN) with this alias in destination, you should use tcp/udp protocols
    disable default allow rule and test



  • in that rule put in destination port section: you have to select other and in the red box start to type that alias name, then select correct alias.


Locked