Introduction
Since IPFire 2.15, the firewall capabilities of the IPFire system have been massively improved. A lot of new features have been introduced which required a more powerful WebGUI. You will find all that you need to know about how to manage this on these pages.
Learn everything you need to know in the introduction.
Menu
The Firewall menu includes the following:
- Firewall Rules - detailed description of all options and inputs on the rule page
- Firewall Groups - configurable grouping for networks, hosts and services
- Firewall Options - modify firewall options like default behavior and logging characteristics
- Intrusion Protection - configuration and IPS rules settings
- IP Address Blocklists - easy activation of various public IP-based blocklists
- Location Block - block incoming connections by country
- Blue Access - access of all devices on blue using MAC Address filtering
- IPtables - display tables containing chains of rules for the treatment of packets
Quick Start Guides
For beginners and for quick results, there are quick start guides that explain how to execute day-to-day tasks:
- Creating a Port-Forward Rule
- Creating an External Access Rule
- Setting up a DMZ
- Creating a DMZ Pinhole
- Using Source NAT
Reference
The comprehensive reference documentation explains how to operate the IPFire firewall. It explains all the bells and whistles and how the firewall works internally. You should definitely read these pages because despite the things everyone should know about the IPFire firewall, there are best practices and many other useful tricks.
- Creating Firewall Rules (reference)
- Rule Processing
- Filtering VPN networks
- Firewall Default Policy
- firewall.local
Examples
- Forward Port 80 from Any network to Green
- Block LAN IP from WAN
- Force clients to use IPFire DNS Server
- Setting up a DMZ
- Creating a DMZ Pinhole
- How to block Shodan scanners
- Creating a Blue to Green Pinhole
- Block outgoing SMTP