>Is there a way to craft a rule that is specific to >anything outbound on the >WAN >interface only? I would imagine an alias of all >internal networks, then a >'Not' >rule , but is my only option, I just don't like the >fact that list has to be >manually >updated or it leaves a hole. > >Thanks , >jlc You do not need to configure rules specific to outbound traffic on WAN (actually it is impossible via web-interface). If you use restrictive policy on every local interface - prohibit all but allow only needed traffic - you are good. Regarding vlan vs physical - it does not make any difference from rules' perspective.
Evgeny. Sent on the TELUS Mobility network with BlackBerry --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
