NAT-question - Script-question from newbie
-
Hi,
I'm all new into pfSense but so far I like it alot. I'm currently running pfSense 2.2.6 as a firewall on a VMware virtual machine to route and secure VLAN.
I have two questions….which I'm sure is pretty simple.1. I want to allow RDP access from one network range/VLAN to all servers on a specific ip-range. How the heck do I solve that?
2. Is it possible to script configuration for fpSense? ...or more likely, how do you guys working with VMware solve the scriptning? Configure the IP and then scripting the rest?, or is it possible to save a configuration on the template to use in console mode?
Have a nice day!
-
1. I want to allow RDP access from one network range/VLAN to all servers on a specific ip-range. How the heck do I solve that?
Create one or more rules pending on this. Or make the Servers be a member of the allowed other VLANs.
2. Is it possible to script configuration for fpSense? …or more likely, how do you guys working with VMware solve the scriptning? Configure the IP and then scripting the rest?, or is it possible to save a configuration on the template to use in console mode?
You are able to store each config from the lowest bottom (easy) to the highest top (difficult)
and then you might be swapping over the config to another pfSense firewall by using this xml file.For sure there would be also config or install scripts but with any changing of the pfSense version and also
code this could be that you are must rewrite your scripts even and even more and so its more easy to in my
eyes to swap it over with a config.xml file. -
@BlueKobold:
Create one or more rules pending on this. Or make the Servers be a member of the allowed other VLANs.
I'm feeling like an idiot, I dont understand how to do that. :(
You are able to store each config from the lowest bottom (easy) to the highest top (difficult)
and then you might be swapping over the config to another pfSense firewall by using this xml fileThanks! My thought was to have a batch file to run and the type in DNS, passoword, ip-address etc after given questions. Maybe I've to reconsider that.
Thanks for your answers!