Firewall Configurations

• Firewall Rules
• Network Address Translation (NAT)

Firewall Rules

Rules can be configured for each interface by navigating to the following page in your GUI...Firewall --> Rules --> Selected Interface. By default, OPNsense will generate sets of rules for each of your interfaces. You can clone, edit, delete, and rearrange the order of rules as desired. Here's an example of what my WAN rules look like:

These are just a couple of rules out of the 24 that were generated. As of now, the only rules I've configured are for my LAN and homeLAB. I plan to host my NAS service with TrueNAS and am waiting on some SSDs to come in. Once I get it up and running, I'll update this page with rules accordingly. 

Network Address Translation (NAT)

Another tab within the Firewall section is NAT, which allows you to configure and set up port forwarding. I'll most likely be using this more when I set up my NAS later this week. 

In addition to port forwarding, you can configure rules for One-to-One connections, Outbound connections, and NPTv6:

One-to-One

Outbound

NPTv6