yahoolane
asked on
Sonicwall How to Block IP
I have a Sonicwall, with 2 t1s it is a 2040 Pro
Some one is tring to hack a server on the inside of my network from the outside.
The T1 is not usable, as they are pushing a lot of traffice up it.
And when I go to reports you see the Ipaddress on Hits by website
you see a lot and a lot of hits.
I had my tech pull the T1, and the Second T1, is working Fine
I have the IP, and I created an object (BlockedIP0521) and and address object Group(Blocked IP)
and added the Deny Rule to the Wan->Lan rules
I then cleared the Log and pluged the t1 back in, again the
IP shows on the reports Log.
How do I block this person, I think I have followed all the right steps.
but when I plug the T1, he is back
I also tried adding it to the Lan->Wan and Wan->Wan also
Some one is tring to hack a server on the inside of my network from the outside.
The T1 is not usable, as they are pushing a lot of traffice up it.
And when I go to reports you see the Ipaddress on Hits by website
you see a lot and a lot of hits.
I had my tech pull the T1, and the Second T1, is working Fine
I have the IP, and I created an object (BlockedIP0521) and and address object Group(Blocked IP)
and added the Deny Rule to the Wan->Lan rules
I then cleared the Log and pluged the t1 back in, again the
IP shows on the reports Log.
How do I block this person, I think I have followed all the right steps.
but when I plug the T1, he is back
I also tried adding it to the Lan->Wan and Wan->Wan also
ASKER
No Subscriptions right now. All expired.
Had to pay for things more that once.
I was hoping to setup a rule. or Switch.
Had to pay for things more that once.
I was hoping to setup a rule. or Switch.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
The Rule goes into the
WAN->WAN
Rule,
Real odd, but had a SonicWall expert login
and he put it in Wan->Wan and tested it
ON Souce we put in an Address objects
with a list of IPS that we could add at any time
WAN->WAN
Rule,
Real odd, but had a SonicWall expert login
and he put it in Wan->Wan and tested it
ON Souce we put in an Address objects
with a list of IPS that we could add at any time
if you have you may not need to worry, this attack look like sql inject and sonicwall will block automically.