OPNsense Forum
Archive => 17.1 Legacy Series => Topic started by: darkbot956 on April 18, 2017, 07:09:57 pm
-
Seems all the firewall rules work with aliases unless i'm mistaken, my self it would be nice if i could disable that topic but sadly i can't from what i understand.
Anyone mind telling me what i should do alias wise so that the firewall covers every ip possible in ipv4 and ipv6 from the wan to the lan so that everything in blocked unless a rule saying different.
All i care about really and i only have 2 lan cards on the system so you know, don't care about Vlans and aliases for the most part.
-
I'm not really sure what it is you are asking, but Aliases are not required to use firewall rules, you can specify network ranges or single ips specifically for a rule instead of using an alias.
Also, with regards to the 2nd part, the default operation for the firewall in OPNsense is to block, so unless there is a firewall rule added for the traffic in question (there is a default rule added to allow LAN to access everything, but that can be removed/edited if need be), the traffic is generally blocked.
-
Problem is i can do nothing with this part of OPNsense
(https://s7.postimg.org/8giqou1e3/can_t_add_rules2.jpg)
It simply won't let me change anything so i can't setup any kind of rules.
-
You must choose tcp or udp protocols to get ports, as the concept of ports does not exist in most other protocols
-
Ya ok that works, tested it ::)
So simple yet i didn't know and most of the firewalls iv messed with to date don't care about that topic and just let the end user slap in port blocking rules.
Was 100% stumped on that topic till you pointed out what to do.
Tnx for the bro tip.