Blocking communications between LAN interfaces

Firewalling
Log in to reply
  • D

    Hi guys,
    I have pfsense set up as follows:
    WAN - wan interface
    LAN - first lan interface - private subnet 192.168.1.0/24.
    LAN2 - second lan interface private subnet 192.168.2.0/24.

    I have set up NAT so that they can communicate via the internet using routed VIPs.

    I do not want them to be able to communicate with each other though, so I have tried setting the following rule:

    LAN interface - Reject any IPV4 source LAN net destination LAN2 net.

    However when I ping from LAN to LAN2 as follows:
    ping 192.168.2.2

    I still get replies.

    What am I doing wrong?

    0
  • Derelict
    LAYER 8 Netgate

    Are you letting the ping run or stopping and restarting it?  You need to stop and restart it or clear the existing state.

    0
  • D

    @Derelict:

    Are you letting the ping run or stopping and restarting it?  You need to stop and restart it or clear the existing state.

    I stopped and restarted the ping and I also rebooted pfsense…

    0
  • D

    Ignore my last post.
    I just checked again and I can no longer ping!

    0

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy