12.2. Aliases

You can find the Alias Settings at Firewall → Aliases.

An Alias can be of one of the following types:

  • Hosts (Single IPs)
  • Hosts (Network Range)
  • Ports
  • Mac Addresses

You can have Aliases in Aliases but they have to be from the same type. Adding a Mac Address Alias to a Port Alias does not work. You are also not allowed to create cyclic structures like createing 2 Aliases and add each of them to the other Alias. This structure creates a loop and is not valid.

For Hosts you can also use hostnames instead of IP Addresses. Be aware though that it is up to the service you use the Alias in to resolve that hostname.

Aliases can be used in different places like firewall rules.

Aliases for Interface IPs, Networks and Virtual IPs are automatically generated.

12.2.1. Hosts (Single IP)

You can enter Single IPs or other Aliases with Single IPs. They can be IPv4 or IPv6.

12.2.1.1. Builtin Hosts

Name IPs
OSPF
  • 224.0.0.5
  • FF02::5
  • 224.0.0.6
  • FF02::6

12.2.2. Hosts (Network Range)

You can enter Network Ranges or other Aliases with Network Ranges. They can be IPv4 or IPv6.

12.2.2.1. Builtin Network Ranges

Name Network Range
LOOPBACK 127.0.0.0/8
RFC1918_A 10.0.0.0/8
RFC1918_B 172.16.0.0/12
RFC1918_C 192.168.0.0/16
MULTICAST 224.0.0.0/4
RFC4193 fd00::/7
PrivateNetworks
  • RFC1918_A
  • RFC1918_B
  • RFC1918_C
  • RFC4193

12.2.3. Ports

You can enter Ports or other Aliases with Ports. You can also add built in ports.

12.2.3.1. Builtin Ports

Name Port
BGP 179
CIFS 3020
CITRIX-ICA 1494
DNS 53
DNS-TLS 853
ESP 4500
FTP 21
FTP-DATA 20
HTTP 80
HTTPS 443
IEC104 2404
IMAP 143
IMAPSSL 993
ISAKMP 500
KERBEROS 88
LDAP 389
LDAPS 636
LPD 515
MODBUS 502
NETBIOS-SSN 139
NFS 2049
OPENVPN 1194
POP3 110
POP3S 995
PPTP 1723
RADIUS 1812
RADIUS-ACCT 1813
RSH 514
RTSP 554
SIP 5060
SIP-TLS 5061
SMTP 25
SMTPTLS 465
SMTPSSL 587
SNMP 161
SNMPTRAP 162
SQLNET 1522
SSH 22
TELNET 23
UUCP 540
WHOIS 43

12.2.4. Mac Addresses

You can also create Mac Address Aliases. They are only used for source Mac Addresses in Firewall Rules. Be careful to use those as the source Mac Address is changed by L3 Routers.