OPNsense Forum

English Forums => General Discussion => Topic started by: securityconscious on January 30, 2021, 06:16:37 am

Title: How to create a list of IPs to allow access to while blocking everything else?
Post by: securityconscious on January 30, 2021, 06:16:37 am: I created an Alias list of IPs of websites I visit most, in OPT1 interface using this Alias I created a block firewall rule, in the destination portion, I selected invert match and used this alias, I saved this rule and applied. I disabled every other rule, and I tried accessing those sites and I wasn't able to access them, I couldn't ping them also.

What am I doing wrong?

I want to create a list of IPs to which my network has access, my network must not access to IPs which are not in that list.
Title: Re: How to create a list of IPs to allow access to while blocking everything else?
Post by: Greelan on January 30, 2021, 06:31:05 am: Traffic is blocked by default, so if you disabled all other rules, there is no rule to allow the required traffic
Title: Re: How to create a list of IPs to allow access to while blocking everything else?
Post by: securityconscious on January 30, 2021, 06:38:27 am: Quote from: Greelan on January 30, 2021, 06:31:05 am
Traffic is blocked by default, so if you disabled all other rules, there is no rule to allow the required traffic

I clearly wrote that I made this rule and disabled every other rule, so shouldn't this rule allow access to the IPs in the alias list?

As this rule is active shouldn't it allow access to the IPs in the it's alias list?
Title: Re: How to create a list of IPs to allow access to while blocking everything else?
Post by: Greelan on January 30, 2021, 06:41:41 am: If that’s your attitude when someone tries to help, good luck with your life. I can see why you were banned from the IPFire forum. Your rule doesn’t do what you think it does, but given you seem to know so much about what you are doing, I am sure you will figure it out yourself
Title: Re: How to create a list of IPs to allow access to while blocking everything else?
Post by: securityconscious on January 30, 2021, 06:54:30 am: Quote from: Greelan on January 30, 2021, 06:41:41 am
If that’s your attitude when someone tries to help, good luck with your life. I can see why you were banned from the IPFire forum. Your rule doesn’t do what you think it does, but given you seem to know so much about what you are doing, I am sure you will figure it out yourself

I think you wanted to troll me or you have poor reading comprehension.

There is nothing wrong with my attitude, in fact in my opening post I asked what am I doing wrong, do you think I would have asked such a question, if I was sure of myself? You could have answered what I was doing wrong, instead chose to troll me or chose to not apply your mind. Why doesn't my rule do what I think it should?

My opening post says, I blocked every other rule, it implies, the newly created rule is active but other rules are inactive. Yet, you tried to make a thoughtless post, maybe your double-agent from IP Fire, to defend their dirt, you wanted to troll me here.