firewall rules: LAN

Started by jr82, October 24, 2016, 08:49:39 PM

Previous topic - Next topic
Print
Go Down Pages 1 2
User actions
November 02, 2017, 05:10:44 PM #15
If you just want to the interface to go out, set a rule to deny access to any other subnet/interface except WAN  (you can set an alias or group) just above the to "Any" rule and it will only allow to go out. In addition you can set some specific rules on top of these if you'd like to let some access to other interfaces.
August 23, 2018, 10:55:23 AM #16
Quote from: Zeitkind on October 24, 2016, 09:59:14 PM
Quote from: jr82 on October 24, 2016, 08:49:39 PM
Why do I have to create a rule in the LAN tab and set the destination to "any" to get an internet connection?

Most serious Firewalls disable any connection (in AND out) by default and you have to enable it by eg. such a rule.
Most SOHO plastic routers have a simular rule but you never see it (allow LAN to any) and can't disable it - which is not a good idea in controled enviroments like schools, companies and such.
It's just a matter of default presets.

If we want to use the transparent proxy and enabling only the firewall ip address to any rule also not working.
If we enable LAN to Any rule. some programmes like ultrasurf will bypass the proxy/firewall. could you please give some suggestions to tackle this situation.
Print
Go Up Pages 1 2
User actions