Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

pfSense for Cloudflare services on the perimeter

image-20240112-150328.png

Alias

pfSense allows you to use a alias (as part of the Pf functions)

% pfctl -sr | grep cflare
pass in quick on em0 reply-to (em0 144.76.Y.X)
   inet proto tcp from <cflarev4> to 192.168.1.XXX
   port = http flags S/SA keep state label "USER_RULE: NAT http"

This alias will pull in a list of IPv4 addresses:

image-20240112-150107.png

NAT with IP restriction

The alias cflarev4 (or similar) can be used for the Source Address field, for example when defining NAT rules.

Screenshot 2024-01-12 at 16.07.07.png

  • No labels

Content by https://www.because-security.com/
📧 https://www.because-security.com/contact