Best practice for limiting FreeNAS access to internal LAN only

Status
Not open for further replies.
T

tundelas

Dabbler
Joined
Dec 24, 2012
Messages
12
Hi All,

As the title suggests.. I'm looking for the best practice for securing my FreeNAS box to only be accessed by PCs on the internal LAN. I've been told to place it inside the DMZ (which does not make sense to me, need some clarity on there). I've also been told to use two routers in my setup, but I'm also not sure how that would work. Please help. Thanks in advance.
 
HolyK

HolyK

Ninja Turtle
Moderator
Joined
May 26, 2011
Messages
654
Just make firewall rules and you are fine.

Example of your network:
Network: 192.168.10.0/24
Gateway (router): 192.168.10.1
NAS: 192.168.10.2
Workstations: 192.168.10.3 - 192.168.10.20

So firewall rule will be like:
Allow src-nat 192.168.10.0/24
Deny/Drop rest of the incoming connections

Result:
Anyone from your subnet will be able to access NAS
No one outside your subnet will be able to access NAS

How to set:
http://www.freebsd.org/doc/en/articles/linux-users/firewall.html
 
Status
Not open for further replies.

Similar threads

R
  • Locked
Weird TCP errors, FreeNAS-11.1-U4, Supermicro X11 and Intel NICs
Replies
4
Views
966
rungekutta
R
G
Run a Local DNS Server for internal lan on TrueNAS 13?
2 3
Replies
41
Views
7K
Geoff
G
DrexLock
Change default NIC used by Bhyve for VM Traffic
Replies
8
Views
3K
JohnB
J
GJSchaller
Looking for best practice for a Public-Facing Jail or VM
Replies
4
Views
1K
GJSchaller
GJSchaller
Jack Naisbett
  • Locked
OpenVPN Server - restrict remote clients to jail access only
Replies
8
Views
3K
zoomzoom
zoomzoom
Top