Is this the same concept in pfSense? If I have a 3 NIC setup can the optional NIC (BLUE) see others on the BLUE and access the internet but not access computers on the GREEN-Lan side?
This is my precise setup, so you should have absolutely no problem. I have the standard WAN/LAN interfaces set up, but then I've added a 3rd NIC (OPT1) renamed to WLAN. The only thing on it is my AP; I have DHCP and Captive Portal enabled on this interface as well. Added a rule that essentially said, "allow all from WLAN if not directed to LAN". Haven't dinked around yet with getting my LAN (Green) access to my WLAN (Blue), but that's just a matter of time - a stateful firewall rule away.
Make sure you add a rule to allow WLAN (OPT1, Blue, whatever) traffic to go somewhere - pfSense will, by default, block that traffic.
I found this setup incredibly nice and easy to use with pfSense. Now all I need to do is finish setting up my VPN on the WLAN interface, and I'll be really secure/happening.
Enjoy - let us know if you run into any problems! RB
