Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
17.7 Legacy Series
»
[SOLVED] Where to Apply Firewall Rules for Site-to-Site IPSEC traffic
« previous
next »
Print
Pages: [
1
]
Author
Topic: [SOLVED] Where to Apply Firewall Rules for Site-to-Site IPSEC traffic (Read 2560 times)
pongafence
Newbie
Posts: 29
Karma: 1
[SOLVED] Where to Apply Firewall Rules for Site-to-Site IPSEC traffic
«
on:
August 15, 2017, 01:22:24 am »
So as the title says, where should I be applying the Site-to-Site IPSEC Firewall rules? Should I be assigning them to the "IPSEC" interface that gets created? Or to the WAN interface?
«
Last Edit: August 15, 2017, 11:47:14 am by franco
»
Logged
franco
Administrator
Hero Member
Posts: 13957
Karma: 1210
Re: Where to Apply Firewall Rules for Site-to-Site IPSEC traffic
«
Reply #1 on:
August 15, 2017, 11:19:17 am »
IPSEC tab, but these policies are only for *incoming* IPsec traffic. All outgoing traffic is filtered by the other interface tabs, or the floating rules if you need a single rule for more than one interface. In the floating rules, you can also filter by "outgoing" traffic.
Cheers,
Franco
Logged
pongafence
Newbie
Posts: 29
Karma: 1
Re: Where to Apply Firewall Rules for Site-to-Site IPSEC traffic
«
Reply #2 on:
August 15, 2017, 11:33:43 am »
Awesome! Thanks for clearing that up. After reviewing my firewall logs, it became quite obvious. However still need to figure out why it's not forwarding routes.
You can now mark this as SOLVED thanks!
Logged
franco
Administrator
Hero Member
Posts: 13957
Karma: 1210
Re: [SOLVED] Where to Apply Firewall Rules for Site-to-Site IPSEC traffic
«
Reply #3 on:
August 15, 2017, 11:47:34 am »
Yay, done.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
17.7 Legacy Series
»
[SOLVED] Where to Apply Firewall Rules for Site-to-Site IPSEC traffic
