[SOLVED] Can't get firewall to work

stignarnia

Member
Mar 26, 2023
2
0
6
I never touched any setting in any "Firewall" category, nor in Datacenter nor in Node, nor in VMs or Containers. Today, on datacenter level, I flipped the switch to yes, expecting to be locked out since the default policy for input is DROP in the GUI. This did not happen. I thought there may be something set up to prevent people from locking themselves out (not a problem, I have physical access to the machine). So I set up the rules in a security group as I wanted them, but they didn't work. For example, port 8081 tcp in remains open no matter what I do. The firewall service itself is working, because iptables -S on the (single) node changes output when I lip the switch from no to yes at datacenter level. If you need any more info please ask, thanks in advance!

Edit: I figured out the my whole network probably is in the management IPSet, how do I get it out of that? I have my router that does firewalling for outside my network, the whole point of activating this one was to restrict access to everyone inside my network except one or two IPs

Edit 2: I figured it out. If you set the default to accept and then make a rule that drops everything it will effectively kick you out of the webUI when you enable the firewall as one would expect
 
Last edited:
Why not vlan it instead on the firewall to a management network, seems like a much better plan :)
 
because I don't want to buy a router and my ISP's one obviously sucks. I also don't want to buy a NIC to add ethernet ports to my server and use an OPNsense container as a main router. So basically money, it's just a homelab