OPNsense Forum

Archive => 17.7 Legacy Series => Topic started by: tfirkins on August 11, 2017, 02:53:12 am

Title: Firewall rule for webproxy?
Post by: tfirkins on August 11, 2017, 02:53:12 am

Hello, I am trying to get the webproxy working in 17.7, and I see this note on the configuration page: "You will need a firewall rule to forward traffic from the firewall to the proxy server."

Is there an example of such a firewall rule, and the order in which it should appear? I have not been able to make it work yet. I have two interfaces, LAN and WAN. Please advise.

Title: Re: Firewall rule for webproxy?
Post by: FurryFennec on August 11, 2017, 05:06:41 am

When you create the NAT port forward rule, the last option, Add associated filter rule, will create the filter rule on the interface automatically. Then you need to move it up in the chain before the LAN to any rule. Works for me.

Title: Re: Firewall rule for webproxy?
Post by: fabian on August 11, 2017, 06:56:10 am

If you open the help you will find a link where you can create such a rule automatically.

Title: Re: Firewall rule for webproxy?
Post by: tfirkins on August 11, 2017, 07:28:51 am

Thank you FurryFennec for providing your example. My system is now working. I had the destination in the NAT rule set to "This Firewall". Setting it to "any" like yours made it work. Thanks again!

Title: Re: Firewall rule for webproxy?
Post by: GonzoMan on August 15, 2017, 03:34:51 am

Hi

Thank you for this post, content filtering works for me kinda.

I have the obvious category "Porn" blocked, but if I type just Porn on the address bar, it circumvents the proxy settings. Figured if I blacklist the domain porn.com that would work, it does but have to type porn.com in lieu of just porn...

we'll see, more research to do. I'm new to OPNSense, moved from Sophos and Pfsense.

thanks again