Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Internal client security

    Scheduled Pinned Locked Moved Firewalling
    3 Posts 2 Posters 851 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R Offline
      rovshango
      last edited by

      Hi,

      I got pfSense :) and using CP
      So there is WAN and LAN, clients which connected to LAN can access internet after successfully AAA etc.

      I got one network for LAN (in my case 10.64.160.0/22) so users can reach eachother

      Is it possible restrict it? Clients will access only pfSense not each other

      Thanks

      1 Reply Last reply Reply Quote 0
      • V Offline
        viragomann
        last edited by

        pfSense can only restrict traffic that passes its interfaces. If you have just a single LAN interface traffic from one LAN host to another won't pass pfSense and couldn't be impacted.

        However, you can realize your goal by using VLANs and putting each client in a separate VLAN if your switch(es) supports this and if the setup isn't too complex for you.

        1 Reply Last reply Reply Quote 0
        • R Offline
          rovshango
          last edited by

          Hi,

          Thanks for reply.
          I have to point that my LAN interface on pfSense is DHCP enable and rest clients get IP address from it

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.