Messages

Hey guys. Sorry for the delay but I can only stay late every other week when I don't have my kids to work on this stuff.

Any way, I tried applying this rule again and only succeeded in blocking the laptop that I was working on instead of the IP address I was tying to block. Not sure how the heck that happened as my laptop is getting a DHCP address and is completely different from the static IP address I blocked in the rule........... yet the "blocked" PC can still access the web and ping outside.

The rule is simple, and was placed as a "floating" rule.......

PROTO    SOURCE               PORT       DESTINATION    PORT     GATEWAY
IPV4       172.19.0.11/24     *              *                      *            *

This rule blocks my laptop (172.19.0.104/24) but does NOT block 172.10.0.11/24.

Now how does that happen?     

This is very frustrating....... none of these rules are working. I tried on the WAN, on the LAN, and even "floating" but nothing is working. I'm setting the rule from the machines IP to the firewall's WAN ip and applying it on the LAN interface with traffic in BOTH (any / first match) direction.

The machine can still surf the net and ping ip addresses.

Really wish this products documentation was better. What am I doing wrong? I really need to get this thing blocked.

Yes that all makes perfect sense, and I figured it was an app on the Server connecting with HQ causing these problems and this is why I simply want to stop all traffic going in or out to this PC. It no longer needs updates or has any reason what-so-ever to communicate with the Internet.

So are my rules correct but simply applied on the wrong interface? Do I simply need to recreate them on the LAN interface?

Again sorry I'm just learning this firewall....

Thank you,
Paul.

Hi all,

I'm a little new to firewalls so please bear with me if my questions seem basic and simple. BTW I LOVE this OPNsense firewall!

So basically I want to stop all incoming traffic from the Internet from reaching a PC on my internal network. There is a vendor who keeps trying to remote into this PC to disable my software.

I made two rules..... one to block incoming traffic, and one to block outgoing traffic from the PC to the Internet (simply to test the rule). Neither seem to work. The PC can still surf the net and ping outside IP address. I have attached a screen shot of the rules I made for review...... obviously the internal PC is 172.19.0.11. The interface these rules are on is the "WAN" interface.

ANY help would be greatly appreciated.

What am I doing wrong?