Trying to block two IP addresses from accessing the network

Started by Heiko910, December 25, 2023, 09:16:04 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 25, 2023, 09:16:04 PM
Hi there,
I am trying to block two IPs from access my network/the internet at a certain time a day.

I have created an Alias that includes the two IPs 192.168.2.7-192.168.2.8
I also created a schedule for Mon-Sun 21:00 - 23.59 and 0:00-08:00

I then went into Firewall rules in my Lan section and created a block rule for inbound traffic from source (the Alias) and I selected the schedule.
I applied all the changes but the two devices still have network access during the period of time.
What am I missing?
Thanks
December 25, 2023, 09:43:42 PM #1
Did you place the block rule above the default allow rule?

Cheers
Maurice
OPNsense virtual machine images
OPNsense aarch64 firmware repository

Commercial support & engineering available. PM for details (en / de).
December 25, 2023, 09:56:38 PM #2
No, is that the problem? Let me try.
Thanks,
Merry Christmas
December 25, 2023, 09:59:08 PM #3
Rule order is important because they are evaluated sequentially from top to bottom. If you have a quick "allow all" rule above the block rule, the block rule will never be evaluated.

Cheers & happy holidays
Maurice
OPNsense virtual machine images
OPNsense aarch64 firmware repository

Commercial support & engineering available. PM for details (en / de).
December 25, 2023, 10:07:47 PM #4
you are a rockstar. I put that rule at the top and it works. Thanks again
Print
Go Up Pages1
User actions