FQDN Based Firewall Rules

Started by bigops, February 01, 2019, 09:26:24 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 01, 2019, 09:26:24 PM
Hi

Is there a way to use FQDN as the destination for firewall rules?  With many services moving to the cloud and some online services like Azure Service Bus and AWS Application Loadbalancers does only guarantee namespace and not the IP Address in case of a failure of system restart.  This results in outbound firewall rules needing to be updated manually.   

If the feature is not available is there a roadmap for this?

GG
February 02, 2019, 02:01:21 AM #1
If you create a hosts type alias with the FQDNs youre interested in you can then reference that alias in your rules. The IPs will be resolved from the alias. You can verify the list by going to Firewall > Diagnostics > pfTables and then finding the Alias you created. I seem to recall that it needs to be referenced in a rule before it shows up there.

November 05, 2019, 01:14:31 PM #2 Last Edit: November 05, 2019, 02:20:43 PM by siga75
EDIT: sorry, it was an old topic
https://www.signorini.ch
Protectli Pfsense Mi7500L6 Intel 7Th Gen Core I7 7500U 16Gb Ddr4 Ram
512Gb Msata Ssd
6 X Intel Gigabit Ethernet
Print
Go Up Pages1
User actions