Help needed to setup a DMZ
-
Hello,
I have a 12 year old that plays a lot of games, Computer and Xbox Live. I have him segregated to OPT1 interface, with blocking rules going to the LAN. I wish to keep him Off the LAN entirely.
Week by week he finds new online games to play and I keep having to open additional ports for him, this keeps me busy.
What I would like to do is setup OPT1 as a DMZ, to allow him any connections incoming and outgoing, but still keeping him Off the LAN.
His current setup.
WAN for our network is DHCP
OPT1 interface is a different subnet from the LAN.
OPT1 is set to static IP = 192.168.2.1Wireless Router Connected to OPT1 is set to Static IP = 192.168.2.112
His wireless Laptop is set to static IP = 192.168.2.76
He bridges his Xbox to the Laptop, we tried to assign it a static IP to the Xbox but with the bridged connection, it would connect to Xbox Live, so it is set to Auto IP.
I need a DMZ setup using the above information for Dummies. Step by step would be a big help.
Any additional suggestions are welcome.
-
If you create a rule at opt1 that deny access to lan network and a second rule that allow everything, it will work.
you can also check upnp options at pfsense and xbox, but I think that the two rules will be enough
-
OK I'll give that a try.
-
If you create a rule at opt1 that deny access to lan network and a second rule that allow everything, it will work.
you can also check upnp options at pfsense and xbox, but I think that the two rules will be enough
I tried your suggestion. Even with the rule * OPT1 net * * * * none, OPT1 is blocking many ports and connections, not sure why. Should I go with my original thought of creating a DMZ? Anyone have any ideas!
-
Have you reset firewall states? See Diagnostics -> States, click on Reset States tab.