Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1166
Views
0
Helpful
3
Replies

RV042 Firewall Rule Help

newkansan
Level 1
Level 1

‎06-07-2012 01:24 PM

I would like to create a rule that that allows computers on the 192.168.5.x subnet to only have internet access (ports 80 and 443).  This is a guest subnet, so do not want them having access to our LAN (which is on 10.x.x.x).  Could someone check attached screenshot and see if I am on the right track?

Thanks!

Tim

Labels:
Preview file
31 KB
0 Helpful
3 Replies 3

Te-Kai Liu
Level 7
Level 7

‎06-07-2012 02:33 PM

You're on the right track. If you do have a web server that you want to protect, you would need to add another two Deny rules (http/https) to block the path from 192.168.5.x to 10.x.x.x. 

0 Helpful

newkansan
Level 1
Level 1
In response to Te-Kai Liu

‎06-07-2012 02:45 PM

Thank you, tekliu.  On second glance, priority 4 appears to be a subset of priority 3, and what you suggest would also fall as a subset.  Would priority 3 cover all those bases, and if so, could I just delete priority 4?

I just thought of DNS...would I need to open up port 53 in addition to ports 80 and 443?

I do not have all the hardware in place yet, I am in the planning stages.  Once hardware comes in, I can start to test.

Thanks again.  I appreciate any more feedback I can get.

0 Helpful

Te-Kai Liu
Level 7
Level 7
In response to newkansan

‎06-07-2012 02:50 PM

You are right - the priority 4 rule is redundant given the priority 3 rule you have.

0 Helpful
Customers Also Viewed These Support Documents