Changes between Version 2 and Version 3 of Cnbp2019/Agenda/pfSenseFirewall


Ignore:
Timestamp:
Mar 13, 2019, 7:48:39 AM (7 years ago)
Author:
admin
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • Cnbp2019/Agenda/pfSenseFirewall

    v2 v3  
    2626and Save and Apply
    2727If you select '''All''', you will find all aliases created.
     28
     29== Rules ==
     30
     31Lets allow http and https ports from outside
     32
     33Go to Firewall > Rules > WAN > Add to end
     34    • Action: pass
     35    • Interface: WAN
     36    • Address Family: IPv4+IPv6
     37    • Protocol: TCP
     38    • Source: Any
     39    • Destination: Single host or Alias: wwwserver
     40    • Destination Port: Custom: wwwport
     41    • Log: ticked
     42    • Description: Allow any to Web ports of wwwserver
     43Save
     44
     45For LAN side, by default web ports are enabled. If you need to allow any other port then,
     46
     47Go to Firewall > Rules > WAN > Add to top
     48    • Action: pass
     49    • Interface: LAN
     50    • Address Family: IPv4+IPv6
     51    • Protocol: TCP
     52    • Source: Single host or Alias: wwwserver
     53    • Destination: Any
     54    • Destination Port: SSH
     55    • Log: ticked
     56    • Description: Allow wwwserver to SSH outside
     57Save
     58
     59You may also add different Separators to define rule groups.
     60Click '''+ Separator''' Give a Name (eg: web) and a Color
     61You may drag and drop the separator by holding from its name. Also you may drag rules by holding from the rules '''Anchor''' mark
     62Once drag and Dropping finished click '''Save''' and '''Apply''' to complete the separation.
    2863
    2964== Schedule ==
     
    6297    • Destination: Any
    6398    • Description: Public NAT
    64 
    65 == Rules ==
    66 
    67 Lets allow http and https ports from outside
    68 
    69 Go to Firewall > Rules > WAN > Add to end
    70     • Action: pass
    71     • Interface: WAN
    72     • Address Family: IPv4+IPv6
    73     • Protocol: TCP
    74     • Source: Any
    75     • Destination: Single host or Alias: wwwserver
    76     • Destination Port: Custom: wwwport
    77     • Log: ticked
    78     • Description: Allow any to Web ports of wwwserver
    79 Save
    80 
    81 For LAN side, by default web ports are enabled. If you need to allow any other port then,
    82 
    83 Go to Firewall > Rules > WAN > Add to top
    84     • Action: pass
    85     • Interface: LAN
    86     • Address Family: IPv4+IPv6
    87     • Protocol: TCP
    88     • Source: Single host or Alias: wwwserver
    89     • Destination: Any
    90     • Destination Port: SSH
    91     • Log: ticked
    92     • Description: Allow wwwserver to SSH outside
    93 Save
    94 
    95 You may also add different Separators to define rule groups.
    96 Click '''+ Separator''' Give a Name (eg: web) and a Color
    97 You may drag and drop the separator by holding from its name. Also you may drag rules by holding from the rules '''Anchor''' mark
    98 Once drag and Dropping finished click '''Save''' and '''Apply''' to complete the separation.
    9999
    100100== Configuring NAT Mapping for our Lab Setup==