[SOLVED] Help with aliases

Started by darkbot956, April 18, 2017, 07:09:57 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
April 18, 2017, 07:09:57 PM Last Edit: April 24, 2017, 02:33:42 PM by franco
Seems all the firewall rules work with aliases unless i'm mistaken, my self it would be nice if i could disable that topic but sadly i can't from what i understand.

Anyone mind telling me what i should do alias wise so that the firewall covers every ip possible in ipv4 and ipv6 from the wan to the lan so that everything in blocked unless a rule saying different.

All i care about really and i only have 2 lan cards on the system so you know, don't care about Vlans and aliases for the most part.
April 19, 2017, 05:29:47 AM #1
I'm not really sure what it is you are asking, but Aliases are not required to use firewall rules, you can specify network ranges or single ips specifically for a rule instead of using an alias.

Also, with regards to the 2nd part, the default operation for the firewall in OPNsense is to block, so unless there is a firewall rule added for the traffic in question (there is a default rule added to allow LAN to access everything, but that can be removed/edited if need be), the traffic is generally blocked.
April 19, 2017, 10:06:20 PM #2
Problem is i can do nothing with this part of OPNsense




It simply won't let me change anything so i can't setup any kind of rules.
April 20, 2017, 05:30:34 PM #3
You must choose tcp or udp protocols to get ports, as the concept of ports does not exist in most other protocols
April 21, 2017, 11:15:06 PM #4
Ya ok that works, tested it  ::)

So simple yet i didn't know and most of the firewalls iv messed with to date don't care about that topic and just let the end user slap in port blocking rules.

Was 100% stumped on that  topic till you pointed out what to do.

Tnx for the bro tip.
Print
Go Up Pages1
User actions