Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    I need to block all traffic on a wireless interface. I have tried a few was to

    Firewalling
    2
    2
    433
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jswope last edited by

      I need to block all traffic on a wireless interface.

      I have tried a few was to allow wireless to wan
      the block any to any

      I only want the wireless to access the internet only and no other interfaces or ipsec tunnels
      ReplyQuoteNotifyRemove

      1 Reply Last reply Reply Quote 0
      • Derelict
        Derelict LAYER 8 Netgate last edited by

        Pass specifically the local assets the wireless clients need (like DNS)
        Reject more general local assets you don't want the wireless clients to be able to access (like other local networks)
        Pass everything else (the internet) (WAN net is NOT the internet. It is the subnet of the WAN address only.)

        Chattanooga, Tennessee, USA
        The pfSense Book is free of charge!
        DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • First post
          Last post