Firewall order of precedence: PPTP redirect vs Snort vs pfBlockerNG
-
Hi - hopefully an easy question.
If PPTP redirection is turned on in VPN > PPTP, will this take effect subject to Snort, pfBlockerNG and any other rules you have in place?
In other words, if an IP is on a Snort or pfBlockerNG blacklist, and tries to connect via PPTP, will that be blocked?
Thanks,
Andrew
-
The redirect rule comes just before the user-defined rules so it could still be blocked by Snort, but not by pfBlockerNG
-
Hi.ย Thanks for taking the time to reply.
Is a solution to this to uncheck the redirect in the PPTP options in the UI and add my own rule in the firewall UI to redirect the traffic to the right place?
Andrew
-
Yes. With your own port forwards+rules (one for tcp/1723, one for GRE) then pfBlocker could be set to act before the rule for the manual NAT entry.
