4. Making a Rule for WAN access ONLY

Making a Rule for WAN access ONLY

  • F

    Hi

    I would like to have a rule that allows OPT1->WAN traffic, but doesn't allow OPT1->LAN or OPT1->OPT2.

    So a rule that would be something like
    Proto: Any
    Source: OPT1 subnet
    port: Any
    Destination: WAN only
    Port: Any
    –-
    Problem being that in 'destination' I can't select anything that would give me WAN "subnet"

    Right know i solve it by having rules to block traffic from OPT1 to my other internal nets, and then a ALLOW from OPT1 to anything.
    But this is not very elegant IMO

    Is this the only way to do it, or am i missing something?  :)

    Best regards,
    Frewald

    0

  • You're missing the aliases.

    Create one that contains all your undesirted subnets and make an "allow all BUT alias" rule for your OPT1 IF.

    0
Locked
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy