Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
17.1 Legacy Series
»
Block private networks from OPT1
« previous
next »
Print
Pages: [
1
]
Author
Topic: Block private networks from OPT1 (Read 9145 times)
roro
Newbie
Posts: 36
Karma: 3
Block private networks from OPT1
«
on:
November 24, 2016, 11:37:11 am »
Hello,
I use OPNsense 17.1.a_753-i386 on soekris but I get the following:
@68 block drop in log quick on vr2 inet from 10.10.0.0/8 to any label "Block private networks from OPT1"
When I put utp in OPT2 no problems.
Something wrong in filterrules?
Greetings.
Logged
fabian
Hero Member
Posts: 2769
Karma: 200
OPNsense Contributor (Language, VPN, Proxy, etc.)
Re: Block private networks from OPT1
«
Reply #1 on:
November 24, 2016, 03:18:50 pm »
You can enable or disable filtering private IP addresses per interface. Should be in the interface settings. The Firewall pages will show it to you if this addresses are blocked with a link to the page which has the settings.
Logged
roro
Newbie
Posts: 36
Karma: 3
Re: Block private networks from OPT1
«
Reply #2 on:
November 24, 2016, 08:30:49 pm »
Hello,
I knew that.
I did some extra testing:
when Private enabled and Bogon disabled it doesn't work.
when Private disabled and Bogon enables it works.
when Private and Bogon are disabled it works.
Looks like Private is swapped with Bogon. Something for Franco?
Greetings.
Logged
franco
Administrator
Hero Member
Posts: 17605
Karma: 1603
Re: Block private networks from OPT1
«
Reply #3 on:
November 25, 2016, 05:13:56 pm »
Hey,
Nice catch and many thanks for running -devel!
# opnsense-patch 9e5aa0c
Cheers,
Franco
[1]
https://github.com/opnsense/core/commit/9e5aa0c
«
Last Edit: November 25, 2016, 05:15:38 pm by franco
»
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
17.1 Legacy Series
»
Block private networks from OPT1
