Solved

sonicwall pro 100 - Block a port on VPN to remote office

Posted on 2007-03-19
2
751 Views
Last Modified: 2012-06-27
Basic VPN and port blocking question. I'm doing it on a Sonicwall pro 100.

What I want to do (or know if it's possible) is block a port on my VPN between my remote offices. The idea being, a certain virus may use port xxx, so i want to block it. I talked to sonicwall support, and they said it was impossible to do with the sonicwall box. I don't believe them. Am i crazY?

I guess if i had to, i could block the port via a rule in the cisco router (assuming i have a version that has some firewall options). Whatcha think?
0
Comment
Question by:cajx
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 16

Accepted Solution

by:
AdamRobinson earned 250 total points
ID: 18752524
I believe the only way on the Sonicwall would be to add an access rule FROM the IP address of the remote office TO your IP with DENY on the chosen port.  Assuming your intersite traffic passes through your Sonicwall.
0
 
LVL 77

Assisted Solution

by:Rob Williams
Rob Williams earned 250 total points
ID: 18753491
Basic purpose of a VPN is to allow all traffic through the tunnel. It's often easier to enable and configure software firewalls on the PC's such as the windows firewall to block specific port traffic. If you have a Win2003 server you could manage that with group policy to enable the firewall and then allow the appropriate exceptions.
0

Featured Post

Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

No single Antivirus application (despite claims by manufacturers) will catch or protect you from all Virus / Malware or Spyware threats. That doesn't stop you from further protecting yourself however - and this article is to show you how.
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question