Sure you can. LAN tab under firewall rules permit tcp [LAN Network Segment] * [Remote Tunnel Segment] 80 * permit tcp [LAN Network Segment] * [Remote Tunnel Segment] 443 * permit tcp [LAN Network Segment] * [Remote Tunnel Segment] 22 * block * [LAN Network Segment] * [Remote Tunnel Segment] * * permit * [LAN Network Segment] * * * *
That's kind of what I have and it keeps my tunnel clear. Curtis LaMasters http://www.curtis-lamasters.com http://www.builtnetworks.com On Thu, Aug 21, 2008 at 9:07 AM, Paul Mansfield <[EMAIL PROTECTED]>wrote: > Curtis LaMasters wrote: > > I don't 100% know whey there is not an OpenVPN interface tab but you > > should be able to create firewall rules to your liking by appling them > > to the LAN interface with the correct source's and destination's. > > > > Curtis > > > > > > On 8/21/08, *digger* <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> > wrote: > > > > Hi quick question, hopefully an easy one. > > > > I have an OpenVPN tunnel between 2 pfsense boxes and I wanted to > > create some firewall rules to only allow port 80, 443 and 22 down > > the tunnel and specifically ban samba shares and smtp. > > > I don't believe you can put filter rules on the vpn tunnels at all; it's > a forthcoming feature. > If you need fine-grained control, use a separate box for vpn termination > and a DMZ to link to your primary firewalls. > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
