Feature #2235: Rules with destination interface - pfSense - pfSense bugtracker

Actions

Copy link

Feature #2235

closed

Rules with destination interface

Added by David RAMEY almost 13 years ago. Updated almost 13 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Category:

Rules / NAT

Target version:

Start date:

02/25/2012

Due date:

% Done:

Estimated time:

Plus Target Version:

Release Notes:

Description

It would be nice if we can make rules between interfaces and/or interface groups directly.

Currently, if an internal network should access internet without accessing another internal network, we have to make two rule :
. deny <LAN1> -> <LAN2>
. permit <LAN1> -> <ANY>

Whereas if each interface is put in a dedicated interface group :
. permit <int-group_lan1> -> <int-group_internet>

This can simplify a lot the rules and avoid some potential unwanted traffic.

Currently no other distro seems to support this (no support for interface group either), I think it can be a major feature for PfSense.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Feature #2235

Rules with destination interface

Updated by Chris Buechler almost 13 years ago

Updated by David RAMEY almost 13 years ago

Updated by Jim Pingle almost 13 years ago

Updated by Erik Fonnesbeck almost 13 years ago