Welcome, Guest. Please login or register.

Author Topic: Alias Groups  (Read 889 times)

Gilgamoth

  • Newbie
  • *
  • Posts: 14
  • Karma: +0/-0
    • View Profile
Alias Groups
« on: March 15, 2016, 02:36:53 PM »
It would be nice if an Alias could be a group of other Aliases. Not sure how difficult this is, but I've got a rule that I want to allow from Multiple locations, so at the moment I have multiple rules for what is effectively the same NAT.

Not a big issue, but a nice to have :)

andywhite

  • Administrator
  • Full Member
  • *****
  • Posts: 100
  • Karma: +0/-0
    • View Profile
Re: Alias Groups
« Reply #1 on: March 17, 2016, 12:27:34 PM »
could you give me a detailed example ? i.e. what it looks like today ?

I did and an ippool feature , but only added it to the firewall rules , not to NAT , I could probably extend it to NAT

Gilgamoth

  • Newbie
  • *
  • Posts: 14
  • Karma: +0/-0
    • View Profile
Re: Alias Groups
« Reply #2 on: March 18, 2016, 04:11:50 PM »
TBH, I mean under Rules rather than NAT.  8)

For example:
  • Under NAT I have a rule that redirects WAN port 123 to 10.0.0.1 port 123
  • Under Aliases, I have 3 aliases for Site1=1.1.1.1, Site2=2.2.2.2 & Site3=3.3.3.3
  • Under Rules I have 3 rules:
    • allows source site1 to 10.0.0.1 port 123
    • allows source site2 to 10.0.0.1 port 123
    • allows source site3 to 10.0.0.1 port 123

I'd like a way to make an alias group called Trusted-Sites, in to which I can add the aliases Site1, Site2 & Site3 so I only need one rule which allows source of Trusted-Sites to 10.0.0.1

Let me know if you need any more information.

andywhite

  • Administrator
  • Full Member
  • *****
  • Posts: 100
  • Karma: +0/-0
    • View Profile
Re: Alias Groups
« Reply #3 on: March 18, 2016, 04:36:30 PM »
so, in 1.10 there is an ippool feature,  where you would create a pool , call it 'trusted sites' , and add those 3 ip addrs to the pool.

in your firewall rule you permit ip from that 'trusted sites' pool to 10.0.0.1 port 123

are you using 1.10 ?

Gilgamoth

  • Newbie
  • *
  • Posts: 14
  • Karma: +0/-0
    • View Profile
Re: Alias Groups
« Reply #4 on: March 18, 2016, 05:35:08 PM »
Not at present. I did a upgrade and found TimeOut issues (https://sourceforge.net/p/t1n1wall/bugs/28/), so I never got around to upgrading again.

I'll have another look at upgrading to 1.10