Smart questions
Smart answers
Smart people
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Member Login
Remember Me
Forgot Password?
Join Us!

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips now!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!
Join Tek-Tips
*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

LINK TO THIS FORUM!

Add Stickiness To Your Site By Linking To This Professionally Managed Technical Forum.
Just copy and paste the
code below into your site.

Tek-Tips LinkedIn® Group

Partner With Us!

"Best Of Breed" Forums Add Stickiness To Your Site
Partner Button
(Download This Button Today!)

Feedback

"...Compliments on a fantastic web site. I have learned so much from my threads and even if sometimes I cannot solve the problem, it gives me the reassurance that I am not the only one putting up with it!..."
More...

Geography

Where in the world do Tek-Tips members come from?
Click Here To Find Out!

Tek-Tips Shirts!

Get Tek-Tips Swag
Get your
Tek-Tips Forums
SWAG here!
Home > Forums > MIS/IT > Security Solutions > SonicWALL solutions Forum

Tips on firewall rule configuration

thread1385-1436102
Read More Threads Like This One
9iron (TechnicalUser)
18 Dec 07 11:45
Hi. I inherited a Sonicwall Pro 2040 here at work, and I guess I just have a couple of questions about some of the rules that were put on this thing, so that I may gain a better knowledge of firewall configuration. Here's some:

Source (WAN 68.1.17.4)
Destination (LAN)
Service (SMTP)
Action (Deny)

This one pretty much says to block any email sent from 68.1.17.4 to anyone on my LAN, right? Easy enough. Probably a known offender being blocked. I get it. One that I don't quite get is:

Source (WAN 216.73.87.20)
Destination (LAN)
Service (HTTP)
Action (Deny)

I don't have any web servers here, so this one puzzles me. Wouldn't I be better off just blocking all inbound HTTP traffic, since I don't have any web servers? Or would that rule stop all my office Internet access? (I wouldn't think so, since my LAN machines are the ones initiating the request)

Thanks.
technome (IS/IT--Management)
30 Dec 07 8:53
The rule is to block an external website, Doubleclick
216.73.87.20

http://tools.whois.net/index.php?fuseaction=whois.whoisbyipresults

If you block incoming http, you cripple Internet access.

Before you start to play wih the unit, backup up the configuration. NEVER make a change unless you sure of the results; you do not want a hacker to enter your network eg. with a play server, I relaxed an FTP site's security..within 20 seconds a hacker was in.

........................................
Chernobyl disaster..a must see pictorial
http://www.kiddofspeed.com/default.htm
Read More Threads Like This One

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Back To Forum

Back To SonicWALL solutions

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close