Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How to reject client form pfsense

    Scheduled Pinned Locked Moved Firewalling
    7 Posts 3 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      Harshana
      last edited by

      Hi,

      I'm new to pfsense.I have assigned static ip to client using IP mapping and created firewall rule (Lan side) to reject client from pfsense. but it's not applied to client,so I was followed pfsense documentation and forum, but I couldn't find proper solution. It's pleasure to have assistance to fix this issue…

      1 Reply Last reply Reply Quote 0
      • M
        muswellhillbilly
        last edited by

        Post a screenshot of your firewall rules (LAN side) and maybe someone can assist.

        1 Reply Last reply Reply Quote 0
        • H
          Harshana
          last edited by

          attached LAN side firewall rule.

          pf1.PNG
          pf1.PNG_thumb

          1 Reply Last reply Reply Quote 0
          • C
            cmb
            last edited by

            That IP would be the source, not destination.

            1 Reply Last reply Reply Quote 0
            • M
              muswellhillbilly
              last edited by

              What cmd said. Reverse the logic: Make the source address 192.168.200.140 and the target any. Might be worth ticking the 'log' box to check the rule is applying correctly.

              1 Reply Last reply Reply Quote 0
              • H
                Harshana
                last edited by

                Hi cmb,
                I have changed ip to source, but anyhow it was not working for client.Do I have to make any other changes ? :(

                1 Reply Last reply Reply Quote 0
                • C
                  cmb
                  last edited by

                  It also has to be the first matching rule in the list, move it to the top. Probably want protocol "any" rather than TCP also,.

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.