pfSense » pfSense Plus

I got this FR idea from Palo Alto firewalls.
There is a feature where you can create an alias (address groups) and apply a tag to them. That tag can then be referenced in firewall rules for easy policy additions.

e.g. Use case which is common in my environment, we need to whitelist IPs and we have two data centers. Apply a tag to that IP object and that's automatically added to any policy that matches the tag. This avoids creating an object to add to an alias on multiple firewalls - only apply it once.

This feature probably would require the management application(single pane of glass) that is in the works but it is something to consider.

To be clear this is not the same thing as adding a tag within the firewall rule. This is applied to the alias that's created which would be used on multiple firewall rules.