Blocking ports using alias not working?

Started by cableguy187, April 28, 2016, 07:23:57 AM

Previous topic - Next topic
Print
Go Down Pages 1 2
User actions
April 30, 2016, 03:12:51 AM #15 Last Edit: April 30, 2016, 03:18:59 AM by cableguy187
I managed to get this working somewhat by creating the BLOCK rule on the WAN with an associated schedule..

Skype and Utorrent still worked after the BLOCK schedule was active.

Is this do to states not being flushed? If so, any suggestions?

I found this - "#4 - AUTO RESET STATES -
pfSense seems hit or miss on this. You setup rules to throttle bandwidth or shut off internet access but someone doing something a bit meatier like a Skype session will remain connected LONG after the rule went into effect. So, you have to cron job to either reset all states or just reset for a certain ALIAS group. Why isn't that just automatically incorporated into a firewall rule and programmed to comply with the ALIAS of that rule only? Example - Terminate internet access at 11PM for alias -  IP ADDRESS GROUP - then a state reset runs and only resets 'IP ADDRESS GROUP' and leaves everyone else untouched. Talk about making the life of an admin easier! High end firewalls terminate when told to terminate. I would think PF and OPN could do this too. "

Has this been looked at?
May 01, 2016, 12:32:33 AM #16
Anyone?

I hope there is a way to flush states or I will have to revert back to PFSense
May 02, 2016, 09:46:24 PM #17
Unfortunately I have reverted back to PFSense..

I did find OPNSense good, well polished and easier to navigate.

Hopefully with the new update my issues are addressed and resolved.
November 05, 2016, 01:48:46 PM #18
Any update on flushing states?
November 05, 2016, 01:53:14 PM #19
If you think this is a problem then I'd suggest your best course of action would be to file a bug report on github: https://github.com/opnsense/
Regards


Bill
Print
Go Up Pages 1 2
User actions