OPNsense Forum

Archive => 22.1 Legacy Series => Topic started by: warheat1990 on July 06, 2022, 08:33:03 pm

Title: How to block access to OPNSense GUI
Post by: warheat1990 on July 06, 2022, 08:33:03 pm

I have following Interfaces
Home (VLAN30) - 192.168.30.0/24
Surveillance (VLAN40) - 192.168.40.0/24

OPNSense IP are 192.168.30.1, 192.168.40.1, etc

I want to block Home network from accessing OPNSense GUI

I tried creating alias like this containing all OPNSense IP addresses
(https://i.imgur.com/4vWPka7.png)
(https://i.imgur.com/NfTB2On.png)

But this rule ended up blocking internet access altogether, what is the best way to block certain Interfaces from accessing OPNsense IP addresses without manually adding OPNsense address one by one for each interface?

Title: Re: How to block access to OPNSense GUI
Post by: madj42 on July 06, 2022, 09:25:40 pm

You're blocking all traffic on every port to those IP addresses.  You most likely want to block just 22, 80, and 443 for a destination port.