Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Group and Interface Firewall rules, bandwidth limiter

    Firewalling
    1
    1
    387
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      credd144
      last edited by

      I have a situation that I haven't been able find a direct answer to yet. I am new to pfSense routers.

      We are putting in a new router with about 20 VLANs (all within 10.0.0.0/8) which I have added to an interface group so that I can apply a simple firewall rule to block all intra-VLAN traffic but to still allow access to the Internet.

      The situation I am faced with, however, is that I need to setup different traffic limiters on a VLAN basis. So it appears to do this I would make an individual interface firewall rule and apply the in/out settings as necessary.

      My question is if this will work as I am expecting now, or will I have to add rules to block intra-VLAN traffic on each individual interface rules? The ordering looks like it will process group rules before individual interface rules, so once the intra-VLAN rule hits (to allow traffic to the Internet), will the limiter be ignored?

      Thanks in advance.

      Chris

      1 Reply Last reply Reply Quote 0
      • First post
        Last post