I am new to ipfire and all the functions are unfortunately not yet clear to me. I am running a simple setup to firewall some devices behind the ipfire.
The clients A1-x are old ones and they should work as before without restrictions within the LAN and also on the Internet. It’s fine.
The plan: the new clients in the green network (B1-x) should have access to the Internet, but not to the devices A1-x (red network). Actually, if I block the red network for the clients B1-x, they unfortunately also have no access to the Internet.
Is it possible to allow internet access for clients from the green network without having access to clients from the red network without any additional hardware?
hi cfusco,
thanks a lot! this works like a charme.
one further question: it would be great if i could block all clients from the red-network without entering them individually (for example temporary dhcp clients). then you could allow individual hosts with a whitelist and set this rule higher up. would something like this also be possible?
solution was to reject access to a custom created network (10.10.10.0/24 in my case) instead of selecting the red network (which is actually the same network, but never mind).