Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
restrict outgoing traffic per user/application
« previous
next »
Print
Pages: [
1
]
Author
Topic: restrict outgoing traffic per user/application (Read 2980 times)
joe99
Newbie
Posts: 9
Karma: 0
restrict outgoing traffic per user/application
«
on:
November 08, 2016, 06:07:03 pm »
Hello Forum
I would like o make sure that no unwanted network communication takes place (mainly from Windows based machines in the network).
Therefore i would like to be asked everytime an application or the Windows-OS itself would like to establish a connection to a remote host/service.
Question:
Does OPNsense already offer such a feature?
Thank you very much!
Joe
PS1:
I understand that such a feature would require an agent on each client(workstation)
PS2:
I do know that some personal firewalls do offer such a feature and as well some very advanced.
«
Last Edit: November 08, 2016, 06:15:38 pm by joe99
»
Logged
fabian
Hero Member
Posts: 2769
Karma: 200
OPNsense Contributor (Language, VPN, Proxy, etc.)
Re: restrict outgoing traffic per user/application
«
Reply #1 on:
November 08, 2016, 08:41:36 pm »
1. We don't have this information on the firewall - we can see only what is sent by the client. We do not see which application sent the data (maybe the protocol has some hints like ssh version or HTTP user agent but that's it). You cannot even rely on the port numbers when you are not using deep packet inspection to check if the protocol is correct.
2. Your host may run into a timeout if the packet is cached in memory until the user clicks something (and afaik it is not implemented in pf). If many connections get opened in a short period of time, your users screen will be full of dialog boxes and because this may lead to panic, the user may click ok on all of them or rejects all of them which breaks a lot of your connections.
3. You should use a personal firewall for that because the firewall will not see the lan traffic between the hosts. So you could not filter any traffic between them if that's your goal.
Logged
joe99
Newbie
Posts: 9
Karma: 0
Re: restrict outgoing traffic per user/application
«
Reply #2 on:
November 16, 2016, 06:16:01 pm »
Thank you very much Fabian for the excellent answer!
Joe
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
restrict outgoing traffic per user/application