4. Firewall rules whit more than one source and no alias

Firewall rules whit more than one source and no alias

  • R

    Hello,

    I am curentely begin install a pfsense firwall in my enterprise.
    We have a lot of rules and I would like to make some rules whit multi alias without making an alias of an alias …

    Like this :
    FROM : (ALIAS1 & ALIAS2 & ALIAS3), TO: (ALIAS5 & ALIAS6), ALLOW TCP (PORT_ALIAS1)

    Thanks

    0
  • P

    I guess you have 6 rules for this now:
    FROM : (ALIAS1), TO: (ALIAS5), ALLOW TCP (PORT_ALIAS1)
    FROM : (ALIAS1), TO: (ALIAS6), ALLOW TCP (PORT_ALIAS1)
    FROM : (ALIAS2), TO: (ALIAS5), ALLOW TCP (PORT_ALIAS1)
    FROM : (ALIAS2), TO: (ALIAS6), ALLOW TCP (PORT_ALIAS1)
    FROM : (ALIAS3), TO: (ALIAS5), ALLOW TCP (PORT_ALIAS1)
    FROM : (ALIAS3), TO: (ALIAS6), ALLOW TCP (PORT_ALIAS1)

    As far as I am aware, you can only put 1 alias in each source/destination field of a rule. So you need to make an aliases that contain other aliases. That works, and I would hhave thought with some good naming conventions for your aliases it should make the rule list readable by mere mortals.

    0
  • R

    OK, that's why I thought. This is a regression before our previous FW but all other stuff on pfsense make this nothing.

    Thanks you.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2019 Rubicon Communications, LLC | Privacy Policy