blocking 2 lan ports from talking

Started by mc141, December 09, 2024, 04:45:11 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 09, 2024, 04:45:11 AM
i just set up an open sense box and need to block 2 ports from talking. on my unifi router i had port 1 set to be for phones tvs and computers and port 2 was all my iot things like google home/lights/switches ect. i had it set so my iot things on port 2 couldnt see or talk to my non iot items on port 1 and vice versa

how do i set up firewall rules on opn sense to do that


thanks
December 09, 2024, 07:57:53 AM #1
Assign the interface for each port to a different subnet and keep the networks connected to them separated.

If they share network hardware - switches or access points - you need to set up VLAN's and different SSID's.

Bart...
December 09, 2024, 09:15:44 AM #2
Adding to that by way clarification, OPNsense blocks traffic between subnets by default. To allow traffic requires specific rules. These can allow one-way or two-way traffic initiation, so you could allow your computers to contact IoT devices but not vice versa, for example.
Deciso DEC697
+crowdsec +wireguard
Print
Go Up Pages1
User actions