OPNsense Forum

English Forums => General Discussion => Topic started by: guest10902 on December 10, 2015, 12:12:28 pm

Title: [SOLVED]Firewall Rule : Block everyone except some users
Post by: guest10902 on December 10, 2015, 12:12:28 pm
Hey everyone, I have a rule with this setup :

Using an alias named "HostBlocking" including domain names such as fr-fr.facebook.com, twitter.com etc.
Using a schedule excluding break times

To sum up, the rule is blocking the domain names included in HostBlocking and use the schedule to authorize theses domain names while the break times.

What I want to do now, is to authorize some users to override this rule.

My thoughts were to create an alias including the mac address and then create a new rule below the first, authorizing this new alias to access the HostBlocking.

Am I right ? I'm just begining with OPNsense and I don't want to fuck up everything.

Thanks.
Title: Re: Firewall Rule : Block everyone except some users
Post by: AdSchellevis on December 10, 2015, 08:40:09 pm
Hi,

You cannot match users, only ip addresses, but if you want to allow certain addresses to be able skip those rules just add extra rules for those addresses above the blocking ones. The filter applies rules on first match bases.

Cheers,

Ad
Title: Re: Firewall Rule : Block everyone except some users
Post by: guest10902 on December 11, 2015, 09:15:14 am
Yeah I got it, I had to try several times, but I made it x)

Thanks