4. Making a Rule for WAN access ONLY

Making a Rule for WAN access ONLY

  • F

    Hi

    I would like to have a rule that allows OPT1->WAN traffic, but doesn't allow OPT1->LAN or OPT1->OPT2.

    So a rule that would be something like
    Proto: Any
    Source: OPT1 subnet
    port: Any
    Destination: WAN only
    Port: Any
    –-
    Problem being that in 'destination' I can't select anything that would give me WAN "subnet"

    Right know i solve it by having rules to block traffic from OPT1 to my other internal nets, and then a ALLOW from OPT1 to anything.
    But this is not very elegant IMO

    Is this the only way to do it, or am i missing something?  :)

    Best regards,
    Frewald

    0

  • You're missing the aliases.

    Create one that contains all your undesirted subnets and make an "allow all BUT alias" rule for your OPT1 IF.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy