Correction #13428: Firewall rules clarification - pfSense Docs - pfSense bugtracker

Actions

Copy link

Correction #13428

closed

Firewall rules clarification

Added by Dave Madsen over 1 year ago. Updated over 1 year ago.

Status:

Resolved

Priority:

Low

Assignee:

Jim Pingle

Category:

Firewall Rules

Target version:

Start date:

Due date:

% Done:

100%

Estimated time:

Description

In https://docs.netgate.com/pfsense/en/latest/firewall/rule-methodology.html, the following text is, at best, unclear, and at worst, wrong.

In pfSense® software, rules on interface tabs are applied on a per-interface basis, always in the inbound direction on that interface. This means traffic initiated from the LAN is filtered using the LAN interface rules. Traffic initiated from the Internet is filtered with the WAN interface rules.

If rules are applied at ingress, then "traffic initiated from the LAN" is incorrect, and should be something like "traffic sent to the LAN".
The following sentence regarding the Internet is true, because traffic is being sent FROM the Internet TO the WAN interface.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Docs

Correction #13428

Firewall rules clarification

Updated by Jim Pingle over 1 year ago

Updated by Jim Pingle over 1 year ago

Updated by Danilo Zrenjanin over 1 year ago