Text only | Text with Images

OPNsense Forum

English Forums => General Discussion => Topic started by: js_opdebeeck on November 10, 2021, 09:45:52 PM

Title: Stuck to configure a Firewall Allowing only Nessus ( TCP 8834)
Post by: js_opdebeeck on November 10, 2021, 09:45:52 PM
Hello blue and red teams,

I'm new to OPNSense and I'm stuck to configure a rule to allow only destination port for Nessus ( TCP-8834), as many protocol, the source port is not fixed to a specific value so I need to put ANY .

My actions :
Protocol TCP
Src_port : Any
Dst_Port : Other ( 8834)

(https://pbs.twimg.com/media/FD3CC7kXEAI7NpL?format=png)

Unfortunatly, when I save OPN make  a rule Src_Port ANY Dst_Port Any.  ... not good at all. So, everything is open :-(

(https://pbs.twimg.com/media/FD3CExjWUAAYA6D?format=jpg)

If I edit the rule, I have a DST_Port = ANY

I also tested with "Alias" Port, but it fails too.

Can you give me some advice ? Did I miss something ?


Js

Title: Re: Stuck to configure a Firewall Allowing only Nessus ( TCP 8834)
Post by: Patrick M. Hausen on November 10, 2021, 10:10:52 PM
You need "from: other", "to: other" in the destination port section and put 8834 in both fields. The "from" is not indicating that this means the source. There are separate source and destination port sections in that web form.

And both take a port range if desired. So for a single port you need "from: X", "to: X" with X the same for both fields.
Title: Re: Stuck to configure a Firewall Allowing only Nessus ( TCP 8834)
Post by: js_opdebeeck on November 11, 2021, 01:50:32 PM
Perfect


;)


Thank you.


Js
Text only | Text with Images