Block WAN but not LAN for client



  • Hi,

    Ive been searching the web and pfsense forum but I cant find a answer to my question.

    How do I set a firewall rule to block Internet Access but not LAN.
    I want this computer to reach other lan clients but not the internet.

    cheers from sweden


  • Rebel Alliance Developer Netgate

    Traffic inside the same subnet, on a wired network, does not hit the firewall. It would be safe to add a block rule at the top of the list to disallow any traffic from that IP. It would not affect them reaching other hosts inside its own subnet.



  • When i do that i cant reach anything. Not even other lan computers. And its on Top.

    proto      source

    • 192.168.1.90 * * * * none

    This is on LAN-rules.

    Edit, It works :P thx!


Locked