4. Blocking communications between LAN interfaces

Blocking communications between LAN interfaces

  • D

    Hi guys,
    I have pfsense set up as follows:
    WAN - wan interface
    LAN - first lan interface - private subnet 192.168.1.0/24.
    LAN2 - second lan interface private subnet 192.168.2.0/24.

    I have set up NAT so that they can communicate via the internet using routed VIPs.

    I do not want them to be able to communicate with each other though, so I have tried setting the following rule:

    LAN interface - Reject any IPV4 source LAN net destination LAN2 net.

    However when I ping from LAN to LAN2 as follows:
    ping 192.168.2.2

    I still get replies.

    What am I doing wrong?

    0
  • LAYER 8 Netgate

    Are you letting the ping run or stopping and restarting it?  You need to stop and restart it or clear the existing state.

    0
  • D

    @Derelict:

    Are you letting the ping run or stopping and restarting it?  You need to stop and restart it or clear the existing state.

    I stopped and restarted the ping and I also rebooted pfsense…

    0
  • D

    Ignore my last post.
    I just checked again and I can no longer ping!

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy