SonicWALL 5.8.1 Microscope & Magnifier User Manual


  Open as PDF
of 1490
 
Firewall > Access Rules
614
SonicOS 5.8.1 Administrator Guide
Access Rule Configuration Examples
This section provides configuration examples on adding network access rules:
“Enabling Ping” on page 614
“Blocking LAN Access for Specific Services” on page 614
“Allowing WAN Primary IP Access from the LAN Zone” on page 615
“Enabling Bandwidth Management on an Access Rule” on page 616
Enabling Ping
This section provides a configuration example for an access rule to allow devices on the DMZ
to send ping requests and receive ping responses from devices on the LAN. By default your
SonicWALL security appliance does not allow traffic initiated from the DMZ to reach the LAN.
Once you have placed one of your interfaces into the DMZ zone, then from the Firewall >
Access Rules window, perform the following steps to configure an access rule that allow
devices in the DMZ to send ping requests and receive ping responses from devices in the LAN.
Step 1 Click Add to launch the Add Rule window.
Step 2 Select the Allow radio button.
Step 3 From the Service menu, select Ping.
Step 4 From the Source menu, select DMZ Subnets.
Step 5 From the Destination menu, select LAN Subnets.
Step 6 Click OK.
Blocking LAN Access for Specific Services
This section provides a configuration example for an access rule blocking LAN access to NNTP
servers on the Internet during business hours.
Perform the following steps to configure an access rule blocking LAN access to NNTP servers
based on a schedule:
Step 1 Click Add to launch the Add window.
Step 2 Select Deny from the Action settings.
Step 3 Select NNTP from the Service menu. If the service is not listed in the list, you must to add it in
the Add Service window.
Step 4 Select Any from the Source menu.
Step 5 Select WAN from the Destination menu.
Step 6 Select the schedule from the Schedule menu.
Step 7 Enter any comments in the Comment field.
Step 8 Click Add.