OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • Intrusion Detection and Prevention »
  • Different rulesets per network
« previous next »
  • Print
Pages: [1]

Author Topic: Different rulesets per network  (Read 4128 times)

Alphakilo

  • Newbie
  • *
  • Posts: 49
  • Karma: 6
    • View Profile
Different rulesets per network
« on: March 23, 2018, 05:23:45 pm »
Hello,

I'm wondering if it is possible to apply different rulesets for different networks.
For instance: Drop P2P for one VLAN, while allowing it for a different.

Cheers
Logged

elektroinside

  • Hero Member
  • *****
  • Posts: 574
  • Karma: 51
    • View Profile
Re: Different rulesets per network
« Reply #1 on: March 23, 2018, 06:00:18 pm »
You probably can (the options are there), with custom rules. Check out "source and destination" here: https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Suricata_Rules

And how to create custom rules here: https://forum.opnsense.org/index.php?topic=7209.0

Please note that I have never tried this, don't actually know if it works.
« Last Edit: March 23, 2018, 06:04:22 pm by elektroinside »
Logged
OPNsense v18 | HW: Gigabyte Z370N-WIFI, i3-8100, 8GB RAM, 60GB SSD, | Controllers: 82575GB-quad, 82574, I221, I219-V | PPPoE: RDS Romania | Down: 980Mbit/s | Up: 500Mbit/s

Team Rebellion Member
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • Intrusion Detection and Prevention »
  • Different rulesets per network
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2