Multie Lan isseu?
-
Hi
I have an alix set up running fine
I have set up 2 Lan interfaces - one running 10.0.0.0/24 and another on 192.168.2.0/24
Both have net access via the wan interface
What I want to do is stop traffic between the 192.168.2.0 and 10.0.0.0 networks - Ive tried a few fire wall rules and also
block private networks - from the interface section but I'm not having much luckAnyone know how to do this?
Thanks
Steve
-
What I want to do is stop traffic between the 192.168.2.0 and 10.0.0.0 networks - Ive tried a few fire wall rules and also block private networks - from the interface section but I'm not having much luck
If you block private networks on these interfaces there will be blocked everything, cause your LANs are private networks.
Basically pfSense only allow traffic which is proper to a configured firewall rule. However on LAN interface there is a predefined rule that allow traffic from LAN net to anywhere. If you don't want this you have do delete or edit it to fit to your purposes.
If you just want to isolate your 2 LANs add a rule to each interface to pass traffic, in the destination area check "not", select network in type-dropdown and in the underneath field enter the other LAN network and mask. Delete any other rules.
This allow access to anywhere, but the other LAN.