OPNsense Forum

Archive => 19.1 Legacy Series => Topic started by: bigops on February 01, 2019, 09:26:24 pm

Title: FQDN Based Firewall Rules
Post by: bigops on February 01, 2019, 09:26:24 pm
Hi

Is there a way to use FQDN as the destination for firewall rules?  With many services moving to the cloud and some online services like Azure Service Bus and AWS Application Loadbalancers does only guarantee namespace and not the IP Address in case of a failure of system restart.  This results in outbound firewall rules needing to be updated manually.   

If the feature is not available is there a roadmap for this?

GG
Title: Re: FQDN Based Firewall Rules
Post by: seized on February 02, 2019, 02:01:21 am
If you create a hosts type alias with the FQDNs youre interested in you can then reference that alias in your rules. The IPs will be resolved from the alias. You can verify the list by going to Firewall > Diagnostics > pfTables and then finding the Alias you created. I seem to recall that it needs to be referenced in a rule before it shows up there.

Title: Re: FQDN Based Firewall Rules
Post by: siga75 on November 05, 2019, 01:14:31 pm
EDIT: sorry, it was an old topic