Firewall Allow by IP Address and Port Between VLAN
Firewalla Gold Configuration.
Are we able to Setup "Allow" firewall rules from a network to a specific host to a specific port?
For example, I have a WiFi controller on VLAN1 with IP address 192.168.100.100. I have two different guest WiFi, one on VLAN2 and one on VLAN3. In order for the guests to access the internet they will need to agree to a terms and condition, which when they connect to the wifi they are directed to the WiFi controller over port 8080 or 8443.
I want to be able set a rule to Allow traffic from network VLAN2 and VLAN3 to IP 192.1680.100.100 over port 8080 and 8443. Traffic to all other ports will be blocked.
Thanks,
John
-
1.42 is very close to be released, then it will be 1.43, make sure you join the beta program if you want to see it early https://help.firewalla.com/hc/en-us/community/posts/360001149673-Beta-Onboarding
-
Looking forward to this 1.43 release. Any ETA now that 1.42 is released?
As of now I can't control access to my internal web services via Cloudflare proxy because of this limitation, which was surprising to see from a team of Cisco ASA engineers (no offense meant at all). It seems you can only pick one of the options for the inbound list of "allow" rules, not multiple ones as any $100+ firewall does. I do understand the Firewalla gold is still meant for home use, but now days proper security policies/rules are even more important to allow specific traffic as needed.
Thanks again for the hard work on Firewalla. Very impressed with the size/performance of the entire product line!
-
PBR is in app 1.44, if you need access to it, send help@firewalla.com an email with your itunes/google play email.
SNAT customization is in 1.972, also in early access mode.
https://help.firewalla.com/hc/en-us/articles/1500000336261-Firewalla-App-Release-1-44
Please sign in to leave a comment.
Comments
13 comments