userdoc:tt_firewall_overview

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
userdoc:tt_firewall_overview [2020/05/23 08:27]
abelbeck [DMZ Traffic Flow] 		userdoc:tt_firewall_overview [2020/05/24 16:04] (current)
abelbeck [Default Allowed Traffic Flow]
Line 12: Line 12:
  
 !!Note ->!! WireGuard and OpenVPN virtual networks are treated as LANs. !!Note ->!! WireGuard and OpenVPN virtual networks are treated as LANs.
 +
 +!!Note ->!! Using the DMZ requires at least one LAN defined.
  
 ===== DMZ Traffic Flow ===== ===== DMZ Traffic Flow =====
Line 34: Line 36:
 You may also want mDNS (''UDP 5353'') You may also want mDNS (''UDP 5353'')
  
-To drop DMZ->Local logging, uncheck the following:+To disable DMZ->Local logging, uncheck the following:
  
 Firewall sub-tab: Firewall sub-tab:
Line 43: Line 45:
  
 For the Pi-Hole case, the DMZ is perfect.  The Pi-Hole can use AstLinux's DNS-over-TLS as it's upstream feed, and dnsmasq's DHCP can be configured to give out the Pi-Hole DMZ address for DNS. For the Pi-Hole case, the DMZ is perfect.  The Pi-Hole can use AstLinux's DNS-over-TLS as it's upstream feed, and dnsmasq's DHCP can be configured to give out the Pi-Hole DMZ address for DNS.
 +
 +
 +===== Firewall Plugins =====
 +
 +!!Related Info ->!! **[[userdoc:tt_firewall_plugins|Firewall Plugins]]**
 +\\
 +===== Firewall External Block List =====
 +
 +!!Related Info ->!! **[[userdoc:tt_firewall_external_block_list|Firewall External Block List]]**
 +\\
  
  • userdoc/tt_firewall_overview.1590240465.txt.gz
  • Last modified: 2020/05/23 08:27
  • by abelbeck