Can anyone explain why this rule is not blocking ?
I even disable the anti-lockout rule to remove source(any) for 80 and 443.
This is LAN16 (192.168.16.0/24) and my goal is to allow only access from physical LAN port.
I have added a rule to block everything that is not from LAN16.
I can still access the pfsense and LAN16 through a tunnel VPN network 172.16.92.0/24.
Any comments appreciated.