pfsense:suricata:custom_rules
This is an old revision of the document!
PFSense - Suricata - Custom Rules
To create custom passlist rules go to the RULES tab for the interface, choose CUSTOM RULES in the Category drop-down and then type in the rules you need.
There are plenty of examples on the web.
You can add restrictions by protocol, port and source or destination IP address.
WARNING: Just really think about what your rule is allowing when creating it.
pass ip 1.2.3.4 any <> any any (msg:"pass all traffic from/to 1.2.3.4"; sid:100000;) pass ip 192.168.1.22/32 80 <- any any (msg: "Pass List Entry - allow all traffic to/from 192.168.1.22/32"; sid:1000006;
References
pfsense/suricata/custom_rules.1583091600.txt.gz ยท Last modified: 2020/07/15 09:30 (external edit)