Firewall Interface select with UCR variable


is there a method to select interfaces with UCR variables to create firewall rules or only with the IP addresses.

I know about /etc/security/packetfilter/ but is this the UCS-Way?

Thanks in advance.


according to doc you can use IPs. Not interfaces.


As knebb has said, the UCR variables allow IPs and port numbers only. The is there for exactly this reason: for instances when the bare-bones features of the UCR variables don’t suffice. So yes, using said file for more complex rules is the UCS way.

Kind regards