Firewall Interface select with UCR variable

firewall

#1

Hello,

is there a method to select interfaces with UCR variables to create firewall rules or only with the IP addresses.

I know about /etc/security/packetfilter/50_local.sh but is this the UCS-Way?

Thanks in advance.


#2

Hi,

according to doc you can use IPs. Not interfaces.


#3

Hey,

As knebb has said, the UCR variables allow IPs and port numbers only. The 50_local.sh is there for exactly this reason: for instances when the bare-bones features of the UCR variables don’t suffice. So yes, using said file for more complex rules is the UCS way.

Kind regards
mosu