Help needed for Firewall Rules

empierrelouis · March 26, 2024, 04:40:52 AM

Hello there, as I am new to Opensense & the VLAN world I am stuck.

Can you please help me write the correct firewall rule(s) that will allow a computer (IP address 192.168.100.2/24) from PCVLAN tag ID 10 to print on a printer (IP address 10.10.100.2/24) located on the LAN interface?

Thank you in advance.

tiermutter · March 26, 2024, 08:17:52 AM

Create a allow rule on VLAN source= 192.168.100.2 and destination= 10.10.100.2
Remember that WSD will work in subnet only, though the printer should be added manually via IP.

jp0469 · March 26, 2024, 06:21:41 PM

Quote from: empierrelouis on March 26, 2024, 04:40:52 AM
...that will allow a computer (IP address 192.168.100.2/24)...

Just a heads up. For a single host, you want 192.168.100.2/32. If you express your rule as 192.168.100.2/24, then you'll be allowing the entire range of IPs from 192.168.100.0 thru 192.168.100.255 to pass.

empierrelouis · March 28, 2024, 07:38:22 AM

Thank you for the reply, I will keep you posted.

Help needed for Firewall Rules

empierrelouis

March 26, 2024, 04:40:52 AM Last Edit: March 26, 2024, 05:11:42 AM by empierrelouis

tiermutter

March 26, 2024, 08:17:52 AM #1

jp0469

March 26, 2024, 06:21:41 PM #2

empierrelouis

March 28, 2024, 07:38:22 AM #3