Wiki

User Tools

Site Tools

Trace:
pfsense:install_pfsense:create_firewall_aliases

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
pfsense:install_pfsense:create_firewall_aliases [2020/12/04 13:26] – [Define Alias for Chromecast Ports] peterpfsense:install_pfsense:create_firewall_aliases [2022/10/20 09:07] (current) – [Define Alias for Printers] peter
Line 15: Line 15:
 Click **Add**. Click **Add**.
  
-  * Name LOCAL_SUBNETS +  * Name:  **LOCAL_SUBNETS**. 
-  * Description local subnets +  * Description:  **local subnets** 
-  * Type Networks +  * Type:  **Networks**. 
-  * Network 192.168.0.0 +  * Network:  **192.168.0.0**. 
-  * CIDR 16 +  * CIDR:  **16**. 
-  * Comment LAN (192.168.0.0 - 192.168.255.255)+  * Comment:  **LAN (192.168.0.0 - 192.168.255.255)**.
  
 Click **Save**. Click **Save**.
Line 34: Line 34:
 ---- ----
  
 +===== Define Alias for Printers =====
 +
 +Create an alias to define the printers we are using.
 +
 +Navigate to **Firewall -> Aliases -> IP**.
 +
 +Click **Add**.
 +
 +  * Name:  **PRINTERS**.
 +  * Description:  **local subnets**
 +  * Type:  **Host(s)**.
 +  * Network:  **192.168.1.100**.
 +  * Comment:  **HP Officejet Pro 8620**.
 +
 +Click **Save**.
 +
 +<WRAP info>
 +**NOTE:** This alias will be used in firewall rules to grant users of other VLANs access to the Printers:
 +</WRAP>
 +
 +
 +----
 +
 +<WRAP center round todo 60%>
 +The other aliases below here still need to be worked out properly, so ignore for now.
 +</WRAP>
 +
 +
 +----
 ===== Define Alias for Ubiquiti ===== ===== Define Alias for Ubiquiti =====
  
Line 130: Line 159:
  
 <WRAP info> <WRAP info>
-**NOTE:**  Chromecast uses UDP ports 32768-61000 once connected.  Might need to allow both incoming and outgoing on these ports. +  Allow both TCP ports 8008 and 8009 outbound to the Chromecast device. 
- +  * Allow high UDP ports both incoming and outgoing. "High ports" are the local ports usually ranging 32768-61000
-Might need to allow special SSDP packets outbound (which is UDP traffic to the multicast IP 239.255.255.250, destination port 1900).   Chromecast app should send information over SSDP if it wants to discover the Chromecasts in the network.  The Chromecast should then reply to the source IP it was given.+  * Allow the special SSDP packets outbound (which is UDP traffic to the multicast IP 239.255.255.250, destination port 1900) which is used to check for other Google devices in the same network.  Google devices reply with the Source IP to this packet.
  
 See:  https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-6/chromecastDG76/ChromecastDG76.html See:  https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-6/chromecastDG76/ChromecastDG76.html
Line 233: Line 262:
  
 </WRAP> </WRAP>
 +
 +----
 +
 +Return to [[PFSense:Install pfSense|Install pfSense]] or continue to [[PFSense:Install pfSense:Create Firewall Rules|Create Firewall Rules]].
 +
 +----
  
pfsense/install_pfsense/create_firewall_aliases.1607088411.txt.gz · Last modified: 2020/12/04 13:26 by peter
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki