OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 19.1 Legacy Series »
  • Firewall rule for dedicated dmz network
« previous next »
  • Print
Pages: [1]

Author Topic: Firewall rule for dedicated dmz network  (Read 7803 times)

manuel

  • Newbie
  • *
  • Posts: 25
  • Karma: 1
    • View Profile
Firewall rule for dedicated dmz network
« on: December 13, 2019, 03:22:13 pm »
Hello
I'm trying to setup a separate dmz network (no dhcp). The goal is to have only Internet access from this network. No Access to LAN on this new network at all. How can I achieve this? I tried to configure the fw according to the opnsense how to "Setup a guest network" but I can't resolve host names at all and browse the internet.

What is wrong with my fw rules?

Thank you very much for your help.

Manuel

Logged

bartjsmit

  • Hero Member
  • *****
  • Posts: 1600
  • Karma: 167
    • View Profile
Re: Firewall rule for dedicated dmz network
« Reply #1 on: December 13, 2019, 04:34:36 pm »
Run a packet trace and see if the DNS packets are allowed to the internet?

Interfaces -> Diagnostics -> Packet Captures

Bart...
Logged

manuel

  • Newbie
  • *
  • Posts: 25
  • Karma: 1
    • View Profile
Re: Firewall rule for dedicated dmz network
« Reply #2 on: December 14, 2019, 12:24:01 pm »
Hello
Managed to create the following FW rules. It's now working :-)

Thank you for your help.

Manuel
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 19.1 Legacy Series »
  • Firewall rule for dedicated dmz network
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2023 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2