New Content #14317: Add docs for Ethernet Filtering (Plus Only) - pfSense Docs - pfSense bugtracker

Actions

Copy link

New Content #14317

closed

Add docs for Ethernet Filtering (Plus Only)

Added by Jim Pingle about 2 years ago. Updated over 1 year ago.

Status:

Resolved

Priority:

Normal

Assignee:

Jim Pingle

Category:

Firewall Rules

Target version:

Start date:

Due date:

% Done:

100%

Estimated time:

Description

Ethernet/L2 filtering was added to Plus in #14308 and needs documentation.

A few notable items:

Plus only feature
Off by default, enabled via checkbox option on System > Advanced, Firewall & NAT tab
Rules are managed on a single dedicated tab at Firewall > Rules, Ethernet tab that only appears when the option is enabled
Only effective on interfaces that support L2 (e.g. they have a MAC address and operate at L2 with ARP and so on), would have no effect on interfaces that do not carry L2 info in packets.
Passes by default
Does not keep state, so recommend adding rules in pairs (one for each of in/out direction)
Plugin hook is available for packages to add Ethernet rules.

Related issues

Actions

Copy link

Updated by Jim Pingle about 2 years ago

Status changed from New to In Progress

Actions

Copy link

Updated by Jim Pingle about 2 years ago

% Done changed from 0 to 30

I started on them here:

https://gitlab.netgate.com/docs/pfSense-docs/-/commit/8c98f9424906a84009ddd9b0640c633d0ca6a270

Will likely get sidetracked a bit because the Advanced options docs are a bit out of date so adding the checkbox option there will require revising a bunch of that content first.

Actions

Copy link