OPNsense Forum

Archive => 19.1 Legacy Series => Topic started by: manuel on December 13, 2019, 03:22:13 pm

Title: Firewall rule for dedicated dmz network
Post by: manuel on December 13, 2019, 03:22:13 pm: Hello
I'm trying to setup a separate dmz network (no dhcp). The goal is to have only Internet access from this network. No Access to LAN on this new network at all. How can I achieve this? I tried to configure the fw according to the opnsense how to "Setup a guest network" but I can't resolve host names at all and browse the internet.

What is wrong with my fw rules?

Thank you very much for your help.

Manuel
Title: Re: Firewall rule for dedicated dmz network
Post by: bartjsmit on December 13, 2019, 04:34:36 pm: Run a packet trace and see if the DNS packets are allowed to the internet?

Interfaces -> Diagnostics -> Packet Captures

Bart...
Title: Re: Firewall rule for dedicated dmz network
Post by: manuel on December 14, 2019, 12:24:01 pm: Hello
Managed to create the following FW rules. It's now working :-)

Thank you for your help.

Manuel

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy