OPNsense Forum

Archive => 18.7 Legacy Series => Topic started by: jorgevisentini on March 07, 2019, 04:26:42 am

Title: How to works the update Firewall Alias
Post by: jorgevisentini on March 07, 2019, 04:26:42 am

Hi all!

Sorry my english.

I would like to know how to works the Firewall Alias...
How often the firewall rules are update...
How often the firewall alias are update...

How to works the update Alias in pfTables?

Why do I ask?
I have to allow a rule that accept POP, POP/S port to URL outlook.office365.com.
That URL change the IP address frenquence every minute, so I need understand how works for me create the necessary alterations.

Thank you very, very much for the help!

Title: Re: How to works the update Firewall Alias
Post by: hbc on March 10, 2019, 11:20:09 am

I do not think, ips are changed every minute. I assume it is dns load balancing and this fqdn is registered with several ips.
When OPNsense resolves a fqdn, it fetches every assigned ip.

Create your alias outlook.office365.com and check Firewall ‣ Diagnostics ‣ pfTables. Lookup your alias and there you should see all ips for this fqdn.

Quote

When using a fully qualified domain name, the name will be resolved periodically (default is each 300 seconds).

https://wiki.opnsense.org/manual/aliases.html (https://wiki.opnsense.org/manual/aliases.html)