Firewall rules

Started by mdr77, November 13, 2020, 05:43:47 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
November 13, 2020, 05:43:47 PM Last Edit: November 13, 2020, 05:47:47 PM by mdr77
Hi all,

i am a bit lost about the meaning of firewall rules for interfaces. Somehow i cannot find help using the documentation.
Do the rules apply for traffic leaving that specific interface or apply for incoming traffic? Somehow the documentation is really confusing about that detail

Best Regards
November 13, 2020, 06:33:23 PM #1 Last Edit: November 13, 2020, 06:34:55 PM by chemlud
Hello to OPNsense!

Traffic is evaluated against the rules on the FIRST interface it reaches, i.e. a LAN client trying to reach the interwebs to, let's say, reach an SMTP/S server will need an allow rule on the LAN interface for this specific client or the whole LAN network as SOURCE and the respective port (465 iirc) as TARGET.

The reply from the SMTP/S server on th interwebs needs no specific rule, it's a stateful firewall. So NO rules on WAN normally need. Very important. 
kind regards
chemlud
____
"The price of reliability is the pursuit of the utmost simplicity."
C.A.R. Hoare

felix eichhorns premium katzenfutter mit der extraportion energie

A router is not a switch - A router is not a switch - A router is not a switch - A rou....
Print
Go Up Pages1
User actions