Issue with pfSense webUI in VLAN 50
Issue with pfSense webUI in VLAN 50
I have set up my PFSense box with a guest VLAN on ID 50, and everything functions properly. I receive a DHCP lease at 10.0.1.1/24, which is standard for a LAN. The issue lies in trying to restrict access to the web UI from my guest network (10.0.1.1/24). I have created the following rules: the blue squiggle blocks internet access, and the destination alias points to 10.0.0.1 and 10.0.1.1. The problem persists because the top rule completely blocks internet access, preventing even basic searches like google.com.
Adjust the rule to restrict the web UI access exclusively to the IP address 10.0.1.1 on port 443.
It seems my explanation got a bit confusing. You mentioned changing the destination to 10.0.1.1 and port 443, but the issue persists. Could you clarify what you were trying to do? It looks like there might be some misconfiguration or misunderstanding.
All guidelines you possess are shown in the image for the guest network. At the end of the list, there is an "allow all to all" rule, which you can apply generally.
Check pf activity through the console using the pflog interface. For example, tcpdump -n -e -ttt -i pflog0 followed by grep helps filter data. Review the pf rules and their output with commands like pfctl -vvsr to see rule numbers and troubleshoot issues. A common challenge is converting these outputs to match the GUI display, so enable logging on all rules for clarity.