4. Group and Interface Firewall rules, bandwidth limiter

Group and Interface Firewall rules, bandwidth limiter

  • C

    I have a situation that I haven't been able find a direct answer to yet. I am new to pfSense routers.

    We are putting in a new router with about 20 VLANs (all within 10.0.0.0/8) which I have added to an interface group so that I can apply a simple firewall rule to block all intra-VLAN traffic but to still allow access to the Internet.

    The situation I am faced with, however, is that I need to setup different traffic limiters on a VLAN basis. So it appears to do this I would make an individual interface firewall rule and apply the in/out settings as necessary.

    My question is if this will work as I am expecting now, or will I have to add rules to block intra-VLAN traffic on each individual interface rules? The ordering looks like it will process group rules before individual interface rules, so once the intra-VLAN rule hits (to allow traffic to the Internet), will the limiter be ignored?

    Thanks in advance.

    Chris

    0
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy