IPTABLES like rules
-
Hello, where can I make something like iptables on pfsense?? I need to create the following rules
iptables -I FORWARD -p tcp -d 200.201.160/20 -j ACCEPT iptables -t nat -I PREROUTING -p tcp -d 200.201.160/20 -j ACCEPT
is this possible?? thanks
-
I found something about pf.conf, does pfsense uses pf???
-
It does use pf . And i think that is possible with port forward and manual outbound nat.
-
hehehe i am not that good with iptables, what does that rules mean??
does you or someone else with great knowledge knows???
-
You don't know what it means but you want to add it? Not a ton of iptables gurus here given we're largely BSD not Linux people, but I guess you can't describe what that does.
What are you trying to accomplish? Describing that probably a better route to getting help.
-
Yeah, for the little I know about iptables, I think it makes every connection to 200.201.160.0/20 dont go though the proxy, but directly.
I found something to do this, but it needs to be a transparent proxy, which is not my case
Oh and this rule is safe, removed from the site it needs to connect, a bank site.
-
With manual outbound nat you can decide to NAT or not to different destinations.. upper rules is read/actions first
-
I'm not sure but I think better ways are "pfctl" or "easyrule".