HI all
I attach my network diagram so you can understand what i want to achieve
Basically i want only the interface lan vmbr0,vmbr2,vmbr3,vmbr4,vmbr5,vmbr6 have access only on wan interface to go out and reach internet, i don't want vmbro can talk to vmbr2 and viceversa.
Thanks
Then add rules to prohibit that traffic.
You can use an interface group to simplify things and then create a single set of rules like in the screen shot of this post of mine:
https://forum.opnsense.org/index.php?topic=39041.msg191389#msg191389
Hi Patrick
I have attached the current firewall rules that I have on the interfaces vmbr0 up to vmbr6 excluding vmbr1 which is the wan.
With the following two rules I can surf the internet so it's fine. But I would like to create a rule where it can only go to the internet but can't go to the other networks which are on the other interfaces.
What rule should I create? Can you give some examples? Thanks.
See the screenshot in my linked post above which shows exactly that.
Ok thank you i create alias network with all lan networks, and then create a rule like this and it works!!!