Netgate m1n1wall

Author Topic: Firewall CP Rule (bounty varies)  (Read 4061 times)

0 Members and 1 Guest are viewing this topic.

Offline 900mhzdude

  • Jr. Member
  • **
  • Posts: 43
  • Karma: +0/-0
    • View Profile
Firewall CP Rule (bounty varies)
« on: May 10, 2011, 03:32:09 pm »
Hey Guys,

I need A Firewall Rule that works something like this

Source IP 192.168.1.150 / Source Port 80

 Destination Port 80 http:\\You Have A Virus . Com


The Point of this rule is to Redirect infected customers
or Customers that did not pay there bill to a Web page

Why am I not using Captive Portal?

We are using Multi VLAN and Also Do not want to deal with Auth

A Simple Firewall rule would be awesome and more useful then Captive portal for me

We Are using Pfsense 1.2.3 but we would like to upgrade to 2.0 by the end of the year

As for the Bounty Let me know I have no idea what is fair for this Project
I also Hope other WISP's out there that need this Pitch in on the Bounty


Thanks
« Last Edit: May 10, 2011, 03:35:32 pm by 900mhzdude »

Offline jimp

  • Administrator
  • Hero Member
  • *****
  • Posts: 14976
  • Karma: +4/-0
    • View Profile
Re: Firewall CP Rule (bounty varies)
« Reply #1 on: May 12, 2011, 10:55:20 am »
You can already do that with NAT rules on 2.0 at least, maybe even 1.2.3.

A couple different ways:

* A port forward on LAN with a source of the infected PC (or an alias containing them) and a destination of "any" (not "interface address"), redirect IP would be the web server on another interface hosting the "you are infected" page, and destination/redirect port of 80.

That would redirect any web surfing they try to do over to your "you're infected" page, and if your web server there is set to respond to any query for any page (redirect a 404 to your virus page) with the page you want, it will do exactly as you describe.

Another way would be to run the squid proxy and with squidguard, match the infected users in an ACL, and deny access to everything, and put your "you're infected" message in the squidguard error/redirect.
Need help fast? Commercial Support!

Co-Author of pfSense: The Definitive Guide. - Check the Doc Wiki for FAQs.

Do not PM for help!

Offline 900mhzdude

  • Jr. Member
  • **
  • Posts: 43
  • Karma: +0/-0
    • View Profile
Re: Firewall CP Rule (bounty varies)
« Reply #2 on: May 12, 2011, 02:48:24 pm »
I'm not seeing redirect IP option in 1.2.3

is that a option in 2.0?

Sorry for my stupidity

And Thanks  ;D

Offline jimp

  • Administrator
  • Hero Member
  • *****
  • Posts: 14976
  • Karma: +4/-0
    • View Profile
Re: Firewall CP Rule (bounty varies)
« Reply #3 on: May 12, 2011, 03:06:02 pm »
It's just a port forward. Firewall > NAT.
Need help fast? Commercial Support!

Co-Author of pfSense: The Definitive Guide. - Check the Doc Wiki for FAQs.

Do not PM for help!

Offline 900mhzdude

  • Jr. Member
  • **
  • Posts: 43
  • Karma: +0/-0
    • View Profile
Re: Firewall CP Rule (bounty varies)
« Reply #4 on: May 12, 2011, 03:35:24 pm »
there is no destination/redirect
there in 1.2.3 if I'm missing something
or someone already posted on this please point me in the right way
I have searched for months and have not found anything

Thanks

Offline jimp

  • Administrator
  • Hero Member
  • *****
  • Posts: 14976
  • Karma: +4/-0
    • View Profile
Re: Firewall CP Rule (bounty varies)
« Reply #5 on: May 12, 2011, 04:07:18 pm »
Yeah the source address option is 2.0 only, forgot when that was added.
Need help fast? Commercial Support!

Co-Author of pfSense: The Definitive Guide. - Check the Doc Wiki for FAQs.

Do not PM for help!

Offline 900mhzdude

  • Jr. Member
  • **
  • Posts: 43
  • Karma: +0/-0
    • View Profile
Re: Firewall CP Rule (bounty varies)
« Reply #6 on: May 12, 2011, 04:14:11 pm »
K thanks... looks like we need to upgrade  ???  :'( scary


Thanks

Offline jimp

  • Administrator
  • Hero Member
  • *****
  • Posts: 14976
  • Karma: +4/-0
    • View Profile
Re: Firewall CP Rule (bounty varies)
« Reply #7 on: May 12, 2011, 04:19:51 pm »
We're about to release RC2. Use a current snapshot, it's not so scary.
Need help fast? Commercial Support!

Co-Author of pfSense: The Definitive Guide. - Check the Doc Wiki for FAQs.

Do not PM for help!

Offline 900mhzdude

  • Jr. Member
  • **
  • Posts: 43
  • Karma: +0/-0
    • View Profile
Re: Firewall CP Rule (bounty varies)
« Reply #8 on: May 17, 2011, 08:54:23 am »
Bit off topic but dose the pfSense: The Definitive Guide Apply to Pfsense 2.0?

Offline jimp

  • Administrator
  • Hero Member
  • *****
  • Posts: 14976
  • Karma: +4/-0
    • View Profile
Re: Firewall CP Rule (bounty varies)
« Reply #9 on: May 17, 2011, 08:55:21 am »
Vaguely, it mentions 2.0 in various places and what things were known to be different at the time. We will be writing another book based on 2.0 in the near future.
Need help fast? Commercial Support!

Co-Author of pfSense: The Definitive Guide. - Check the Doc Wiki for FAQs.

Do not PM for help!