Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 775
  • Last Modified:

Access Rule in Sonicwall

Under Access rule in Sonicwall Pro 4060, an access rule has been created flowing from WAN to LAN zone and the destination is defined as WAN IP address.

As the flow is from WAN, I suppose the source IP should be WAN IP address. Why is appeared like this ?

Tks
Test.png
0
AXISHK
Asked:
AXISHK
  • 2
2 Solutions
 
Blue Street TechLast KnightsCommented:
Hi AXISHK,

Yes, your rule in the attachment should be set to the WAN Primary IP or WAN IP rather than the numerical value of your IP, if possible (the Pro 4060 is an older model so it may only allow for the numerical IP value).

The WAN > LAN deny rule is what makes your firewall a firewall. You should have those in any Zone you want by default blocked (typically the WAN > {firewalled subnet, e.g. LAN, DMZ, WLAN, etc.}). The Destination should actually be Any because it will block all WAN IPs that way.

Your default deny Access Rule should read as follows:

From: WAN
To: LAN
Priority: <lowest, if you have 3 Access Rules here it should be last or in this case #3>
Source: Any
Destination: Any
Service: Any
Action: Deny or Discard
Users Incl.: All
Users Excl.: None
Comment: <whatever you want to document this rule>

Let me know if you have any questions!
0
 
Sajid Shaik MSr. System AdminCommented:
it means external traffice coming from the WAN traffic from the IP (Destination=113.2.x.x) allow to lan on specific service... (could be RDP)

guided article :
http://support.microsoft.com/kb/304304

all the best
0
 
AXISHKAuthor Commented:
Tks
0
 
Blue Street TechLast KnightsCommented:
Glad I could help...thanks for the points!
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now