Filter rules on a pfsync interface

Started by Zugschlus, November 29, 2025, 12:51:20 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
November 29, 2025, 12:51:20 PM
Hi,

what are the recommendations for filter rules on the pfsync interface? Some person has dropped an allow all rule there on "my" cluster and I don't feel very comfortable with that.

Greetings
Marc
Marc 'Zugschlus' Haber - St. Ilgen, Germany
Freelance IT Insultant, Debian Developer, Railroad Addict
November 29, 2025, 05:38:14 PM #1
Well essentially if its a point to point link between both firewalls the any rule doesnt hurt anybody.

If youre paranoid only allow the pfsync protocol. If the firewalls also xmlrpc sync over the link also the WebGUI port and https.
Hardware:
DEC740
Print
Go Up Pages1
User actions