Jump to content
Company Name
  • 0
OMAR_2

pfsense real firewall kill switch

Rate this question

Question

If you are lucky to have pfsense box, then use this hack to create full proof kill switch:

 

 

Firewall > Rules, Floating tab

 
Action: Pass
Disabled: unchecked
Quick: checked
Interface: WAN
Direction: out
TCP/IP Version: IPv4
Protocol: UDP
Source: any
Destination: TorGuard's IP ADDRESS
Destination port range: VPN X port of TorGuard's VPN server
 
Then below that rule:
 
Action: Reject
Disabled: unchecked
Quick: checked
Interface: WAN
Direction: out
TCP/IP Version: IPv4
Protocol: any
Source: any
Destination: any
Destination port range: any
 
That will allow outbound connections to only 1 IP on UDP X and block everything else.  
 
x = port

Share this post


Link to post
Share on other sites

2 answers to this question

Recommended Posts

  • 0
Destination: TorGuard's IP ADDRESS  <------ Would I enter the dedicated IP Torguard gave me? 
Destination port range: VPN X port of TorGuard's VPN server  <------ Would this be port 443 as stated to use in the PfSense/TorGuard setup guide posted in this forum?

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×