Actions
Correction #13428
closedFirewall rules clarification
Start date:
Due date:
% Done:
100%
Estimated time:
Description
In https://docs.netgate.com/pfsense/en/latest/firewall/rule-methodology.html, the following text is, at best, unclear, and at worst, wrong.
In pfSense® software, rules on interface tabs are applied on a per-interface basis, always in the inbound direction on that interface. This means traffic initiated from the LAN is filtered using the LAN interface rules. Traffic initiated from the Internet is filtered with the WAN interface rules.
If rules are applied at ingress, then "traffic initiated from the LAN" is incorrect, and should be something like "traffic sent to the LAN".
The following sentence regarding the Internet is true, because traffic is being sent FROM the Internet TO the WAN interface.
Actions