1
Tutorials and FAQs / Re: Filter Rules by controlling output interface
« on: April 05, 2019, 04:15:51 pm »
Thanks for the answer ! 
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
2
Tutorials and FAQs / Filter Rules by controlling output interface
« on: March 31, 2019, 10:40:46 am »
Hi all,
Im searching for a solution on OpnSense to filter traffic by controlling the physical output interface.
My platform for test :
I want from my LAN_1 ping ANY on the WAN but i don't want to ping the LAN_2.
I can do this with 2 rules on OpnSense :
But i''m searching for a solution with only 1 rule. For example, if i use Debian with forwarding, i can use iptables to do this with only one rule :
With this rule, i can control the physical outside interface where the traffic is redirect (in orange the option).
Thank you
Lejaune
Im searching for a solution on OpnSense to filter traffic by controlling the physical output interface.
My platform for test :
I want from my LAN_1 ping ANY on the WAN but i don't want to ping the LAN_2.
I can do this with 2 rules on OpnSense :
- Drop ICMP from LAN_1 to LAN_2
- Authorize ICMP from LAN_1 to ANY
But i''m searching for a solution with only 1 rule. For example, if i use Debian with forwarding, i can use iptables to do this with only one rule :
- iptables -A FORWARD -p ICMP -i ens34 -o ens32 -s 192.168.10.0/24 -j ACCEPT
With this rule, i can control the physical outside interface where the traffic is redirect (in orange the option).
Thank you
Lejaune
Pages: [1]