Products Firewalla Gold Firewalla Gold Plus Firewalla Purple Firewalla Purple SE Firewalla Blue Plus Firewalla Wi-Fi SD Product Comparison Product Reviews

Port Forwarding, Allow Specific IPs only

Follow
Avatar
Patrick Hait

I have a FWG. Is it possible for me to let one or two IP addresses access my Raspberry Pi using the rules or PBR feature? Currently, I forwarding a few ports (ssh [52222 --> 22], ftp [52221 --> 21]) to the RasPi.  However, I'd like to only allow only a few IPs or IP Ranges to access this RasPi. How would I set up an "Allow From Internet - IP: 123.2.3.4, 221.2.3.4. Deny from Internet: All Else"?

I asked 'support', and they said:

see https://help.firewalla.com/hc/en-us/articles/1500000336261-Firewalla-App-Release-1-44-beta-App-Blocking-Policy-Based-Routing

should have the feature you are asking.

You can block all traffic to your pi first, then use above feature to allow 

-- However, I couldn't quite figure out what they were telling me to do.  Follow-ups with support were just as unhelpful.

I THINK I can make it so a particular IP can access, but - How does that also use the Port Forwarding feature?

 

0

Comments

2 comments

Sort by Date Votes
  • Avatar
    Firewalla

    What you need to do is: 

    1. block all access to your pi

    2. insert a rule to allow 123.2.3.4:52222 (and others) to your pi

     

    0
    Comment actions Permalink
  • Avatar
    Patrick Hait

    Aha!  I kept the port forwarding active, but I turned off 'NAT Settings -> Port Forwarding -> Specific Rule -> Allow on Firewall==Off'

    Then, I went to Device -> Pi -> Added rule that the external IPs 'Matching IP Address 123.2.3.4' can always access the Pi.

    That seems to be working.

    Thanks!

    0
    Comment actions Permalink

Please sign in to leave a comment.

Didn't find what you were looking for?

New post