Text only | Text with Images

OPNsense Forum

Archive => 21.7 Legacy Series => Topic started by: lops777 on February 08, 2022, 03:13:20 AM

Title: noob user- would like to prevent a device on my LAN from getting internet access
Post by: lops777 on February 08, 2022, 03:13:20 AM
Evening folks and apologies in advance - I am quite the noob so I would appreciate some help here.

Absolutely 100% out of the box install for many months now.  Did not do anything at all with it yet, it just runs nicely.

Now I wish to block a single IP camera (10.10.10.19) from calling home to somewhere on the internet.

I set up an alias for the camera, followed multiple tutorials to do this, but no-one seems to ever do something as simple as this on its own  ;D

I have just two simple 2 interfaces. Wan and LAN.  thats it. No VLANs, no VPN, no plug ins, nothing yet. All runs nicely, from what I can tell.

I followed the forum item below, and varied it with every combination I could think of.  I set as Wan, Lan, I tried blocking in either or both directions.  But no luck.

https://forum.opnsense.org/index.php?topic=22528.0


Sincere apologies for the dumbness of this question!

thank you for any guidance

best wishes
Andy
Title: Re: noob user- would like to prevent a device on my LAN from getting internet access
Post by: Greelan on February 08, 2022, 08:21:04 AM
Simplest for you is a block rule on LAN, direction IN, source IP the camera alias, destination INVERTED (not) LAN net

Make sure it is above the default allow any rules on LAN
Title: Re: noob user- would like to prevent a device on my LAN from getting internet access
Post by: lops777 on February 08, 2022, 03:21:59 PM
Quote from: Greelan on February 08, 2022, 08:21:04 AM
Simplest for you is a block rule on LAN, direction IN, source IP the camera alias, destination INVERTED (not) LAN net

Make sure it is above the default allow any rules on LAN

awesome - appreciate the help!
Text only | Text with Images