I have 4 interfaces on my firewall LAN1, LAN2, WAN, DMZ plus IPSEC. And everything works as it should, I'm just confused about why certain rules need to be on certain interfaces.
For example I want to allow traffic from one host in the DMZ to one host on LAN. For me it would be logic to have that rule on the DMZ interface, I guess having it on the LAN interface would also make sense, but why do I have to have that rule on the WAN interface? Actually, for traffic from LAN1 to DMZ, any rules on the WAN interface should be ignored as traffic should never go to that interface. My guess is, this has something to do with the fact that I have bridged the DMZ interface to the WAN interface. However, if bridging interfaces leads to firewall rules not working on the interface, why is the interface listed at all under Firewall:Rules? I hope somebody can clarify this for me. Thanks, Christian --------------------------------- Christian Krützfeldt balticfinance IT Phone: +49 461 16063-0 Fax: +49 461 16063-63 --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
