This is how I set mine up as an example. OPT3-> Opt2 # permit tcp 25 OPT3-> Opt1 # permit tcp 22 OPT3-> Lan # deny ip OPT3-> Opt1 # deny ip OPT3-> Opt2 # deny ip OPT3-> inet rules here.
-----Original Message----- From: Matthew Lenz [mailto:[EMAIL PROTECTED] Sent: Friday, September 16, 2005 5:08 PM To: [email protected] Subject: Re: [pfSense-discussion] rule that doesn't include other LANinterfaces great.. i love it when the developers can't decide.. ;) so which interfaces do I add which rules to? restating what I want: OPT3 net -> internet smtp servers GOOD OPT3 net -> any of my other interface (LAN, OPT1,2,4) networks BAD On Fri, 2005-09-16 at 14:30 -0500, Bill Marquette wrote: > Reverse of that actually ;-P > > Create a rule(s) that disallows access to the 'LAN OPT1 OPT2 or OPT4' > and then > create a rule that allows OPT3 net out to all. > > pfsense is a first match filter policy, so insert block rules ahead of > the less granular rules. > > --Bill > > On 9/16/05, Scott Ullrich <[EMAIL PROTECTED]> wrote: > 1 Create rules that disallows OPT3 net to the said resources > 2 Create rules to allow OPT3 to the other optional > interfaces. > > On 9/16/05, Matthew Lenz <[EMAIL PROTECTED]> wrote: > > How do I add a rule to allow 'OPT3 net' to connect to any > SMTP server on > > the internet but not it allow to access SMTP on 'LAN OPT1 > OPT2 or OPT4 > > net'? > > > > -Matt > > > > >
