Hello, you can play with iptables.conf in the conf directory in order to add your custom rules.
Regards Fabrice Le 2018-01-15 à 11:18, lists via PacketFence-users a écrit : > Hi, > > We're using packetfence in inline modus for our wifi (10.10.10.0/24) > segment. The external packetfence interface is inside our dmz lan /24 > segment. (192.84.141.0/24) > > We currently firewall on our gateway 192.84.141.1. Even though this > works, it has the negative side effect that everybody on the wifi > segment has direct access to the machines in 192.84.141.0/24. > > Therefore we would like to firewall outgoing traffic on the > packetfence machine, to only allow stuff like https, dns, etc, and > drop the rest. > > However, since packetfence is so buzy with it's own firewall rules and > adjustments, we're not sure if this is supported, or even possible. > > Could anyone shed some light on this..? > > ------------------------------------------------------------------------------ > > Check out the vibrant tech community on one of the world's most > engaging tech sites, Slashdot.org! http://sdm.link/slashdot > _______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users -- Fabrice Durand [email protected] :: +1.514.447.4918 (x135) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence (http://packetfence.org) ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
