Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    LAN Firewall Rules not working

    Firewalling
    2
    4
    1.9k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • O
      OneAn9ryN00b
      last edited by

      So I upgraded from RC3 to the new 2.0 and all my LAN firewall rules stopped working (which are all blocking internet for specific IPs during specific times). So did a fresh install and still nothing.

      All the IPs in the picture can access the internet even though it says its being blocked, and the ones that have logging enabled are not showing anything in the log, but thats not to much of a high priority right now then getting the internet blocked for the IPs.
      ![LAN Firewall Rules.jpg](/public/imported_attachments/1/LAN Firewall Rules.jpg)
      ![LAN Firewall Rules.jpg_thumb](/public/imported_attachments/1/LAN Firewall Rules.jpg_thumb)

      1 Reply Last reply Reply Quote 0
      • J
        jlepthien
        last edited by

        The x on the schedule tells you that this rule is currently not active because of the time schedule…So now rules are matched except your any rule. All traffic is matched now...
        A firewall should be configured to deny all traffic by default. So just delete that LAN to any rule and just open up traffic flows you need...

        | apple fanboy | music lover | network and security specialist | in love with cisco systems |

        1 Reply Last reply Reply Quote 0
        • O
          OneAn9ryN00b
          last edited by

          So delete the any rule, and just add the IPs I want to access the Internet to the list? Is there any other way to get this to work because I have about 20 devices accessing the Internet. And this was working in RC2, and RC3, don't know what they changed.

          I wouldn't mind setting up a VLAN with time limit either, but have never set up one.

          1 Reply Last reply Reply Quote 0
          • J
            jlepthien
            last edited by

            Just create an alias and add all the PCs you want to that one. Then you have one rule with all clients in it and assign what traffic you want to allow…

            | apple fanboy | music lover | network and security specialist | in love with cisco systems |

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.