Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Documentation and Translation
(Moderator:
fabian
) »
» Firewall » Configure Spamhaus (E)DROP as Floating Rule?
« previous
next »
Print
Pages: [
1
]
Author
Topic: » Firewall » Configure Spamhaus (E)DROP as Floating Rule? (Read 8656 times)
piny
Newbie
Posts: 2
Karma: 0
» Firewall » Configure Spamhaus (E)DROP as Floating Rule?
«
on:
January 03, 2022, 04:05:07 pm »
The section
Configure Spamhaus (E)DROP
(
https://docs.opnsense.org/manual/how-tos/edrop.html#configure-spamhaus-e-drop
) describes in detail how to setup the acc. firewall rules.
Wouldn't this also work with one
floating
rule (per DROP/EDROP) instead of a set of two interface rules for LAN/WAN respectively (per DROP/EDROP)?
If yes this would be a great example of the use of floating rules, wouldn't it!
UPDATE: Just realize that in the definitions of a
floating
rule an interface must be selected exactly the same way as in an
interface
rule.
--> So creating the rule in the interface sections make it more transparent. probably.
«
Last Edit: January 03, 2022, 04:12:55 pm by piny
»
Logged
bimbar
Sr. Member
Posts: 435
Karma: 25
Re: » Firewall » Configure Spamhaus (E)DROP as Floating Rule?
«
Reply #1 on:
January 03, 2022, 06:40:31 pm »
In floating you CAN select an interface, but you don't have to.
Nothing stops you from using an alias (even a dynamic alias like spamhaus edrop) anywhere you want to.
I do like to use stuff like that as a substitution for the internet (like allow <internal networks> to !<internal networks, blocked networks>).
Logged
piny
Newbie
Posts: 2
Karma: 0
Re: » Firewall » Configure Spamhaus (E)DROP as Floating Rule?
«
Reply #2 on:
March 26, 2022, 03:19:25 pm »
Thanks for clarifying!
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Documentation and Translation
(Moderator:
fabian
) »
» Firewall » Configure Spamhaus (E)DROP as Floating Rule?