LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 12-18-2013, 06:22 PM   #1
SpeedoJoe
LQ Newbie
 
Registered: Dec 2013
Posts: 1

Rep: Reputation: Disabled
Question pfSense: Sandboxed virtual network


I'm trying to create a sandboxed virtual network that has access to the internet from my physical home network/router. I have got so far but need a bit of assistance.

The pfSense firewall/router VM is configured with two virtual network adaptors, em0/WAN being the physical home network/router with an IP range of 192.168.0.x and em1/LAN being the virtual network with a network range of 192.168.1.x.

So far the router VM is working as the gateway, DHCP server and DNS forwarder but any test VMs I create can still ping IPs within the 192.168.1.x range, which I'd like to avoid as that means the virtual network isn't fully sandboxed. I have tried enabling "Block private networks" on the LAN adaptor (em1) but this seems to prevent any test client VMs from accessing the router all together, even internet access.

Can someone please point out what I am doing wrong? Am I going to have do do something with VLANs to achieve this? If so, how?
 
Old 12-19-2013, 03:30 AM   #2
NM04
Member
 
Registered: Jan 2011
Distribution: Back Track,Fedora,centos
Posts: 240

Rep: Reputation: 14
its been long since I used pfsense ,but if you just want to stop ping from outside check for options in pfsense it is possible.
It would be easy if you are using GUI mode.

nm
 
Old 12-19-2013, 06:42 PM   #3
ericson007
Member
 
Registered: Sep 2004
Location: Japan
Distribution: RHEL9.4
Posts: 735

Rep: Reputation: 154Reputation: 154
Check that you do not have an any to any or lan net to lan net rule in your lan rules table.

I have attached a screenshot so you can get a general idea. This is done on a test box not connected to internet but also runs pfsense in a vm.

On my system pings are blocked. Remember on pfsense everything is blocked unless explicitly allowed.
Attached Thumbnails
Click image for larger version

Name:	Screenshot_2013-12-20-08-54-09-1.png
Views:	10
Size:	173.6 KB
ID:	14273  

Last edited by ericson007; 12-19-2013 at 06:59 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Lost in the network: setting up network on Laptop with virtual guest machines pdaalder Linux - Networking 1 02-16-2010 05:33 AM
BOINC sandboxed in my debian machine VampX Debian 1 08-13-2009 10:12 AM
Zabbix on pfsense sandeepthug Linux - Software 2 12-22-2008 06:53 AM
LXer: Protect your network with pfSense firewall/router LXer Syndicated Linux News 0 10-03-2008 06:40 PM
LXer: Sandboxed Builds LXer Syndicated Linux News 0 05-13-2006 05:54 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 02:09 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration