We have created a floating rule that replaces all the per-interface Allow N to any (when N is the interface) with a single allow rule. Since we did not enable the Quick option, it will be invoked after any per-interface rules have been invoked, which is what we want; more specific firewall rules should almost always take precedence over more general rules. Having a single rule to allow outbound traffic from local interfaces will save us the trouble of having to recreate the rule every time we add a new interface (we will just have to edit this rule instead).
- Title Page
- Copyright and Credits
- About Packt
- Contributors
- Preface
- Initial Configuration
- Introduction
- Applying basic settings to General Setup
- Identifying and assigning interfaces
- Configuring a WAN interface
- Configuring a LAN interface
- Configuring optional interfaces from the console
- Enabling SSH access
- Generating authorized RSA keys
- Configuring SSH RSA key authentication
- Accessing the SSH
- Configuring VLANs
- Assigning interfaces from the console
- Configuring a WAN interface from the console
- Configuring a LAN interface from the console
- Configuring optional interfaces from the console
- Configuring VLANs from the console
- Essential Services
- Firewall and NAT
- Additional Services
- Virtual Private Networking
- Traffic Shaping
- Redundancy, Load Balancing, and Failover
- Routing and Bridging
- Services and Maintenance
- Backing Up and Restoring pfSense
- Determining Hardware Requirements
- Other Books You May Enjoy
How it works...
-
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click here login for view all page.