Command line firewall rules - easyrule in opnsense?

Started by daniel78, August 25, 2020, 11:23:51 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 25, 2020, 11:23:51 AM
Hi,

is there something like https://docs.netgate.com/pfsense/en/latest/firewall/adding-rules-with-easyrule.html to easy modify some rules on the cli in opnsense?

Lets say directly after commandline installation I want to temporarily administrate the box from WAN and therefore enable webinterface on wan?

Thanks

August 25, 2020, 11:46:58 AM #1
easyrule utility was removed in 2015. I don't think anyone ever asked for it since then.

Today, you can use an API to inject firewall rules https://github.com/opnsense/plugins/issues/1720 or you can simply use a WAN-only setting for the first few minutes (anti-lockout will know what you are doing) of your setup where you manually enable port 443 access before you add your LAN and OPTs.


Cheers,
Franco
"AI has absolutely reduced the cost of creating technical debt." -- ChatGPT
August 26, 2020, 04:23:26 PM #2
Thanks a lot! This helps!
December 02, 2020, 09:54:59 PM #3
I used regularly easyrule on pfSense (I protected my HTPPS interface with IP source filtering on my AS adress range ... and sometime my provider change my AS).
I miss it on OPNsense.
December 03, 2020, 08:03:07 PM #4
It's perfectly possible to write a plugin emulating the functionality with all the rule handling reworks we've done over the years.


Cheers,
Franco
"AI has absolutely reduced the cost of creating technical debt." -- ChatGPT
Print
Go Up Pages1
User actions