Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 371
  • Last Modified:

Restrict access by ddns on firewall

I have a webserver with an external ip behind a firewall but I don't want everybody to have access on it.  I am thinking of setting up ddns on the site that I would allow access to then I will restrict access based on these ddns on the firewall.  Seems perfect but when I put these policies in, the firewall does not detect those ddns address but I can ping it.  The policy is

xyz.domain.com (untrust)       x.x.x.x (external true ip - trust)        http (service)


If I change the untrust to any, it works fine.  If I put this ddns address in, the policy greys out and it searches very slow.

My firewall is a netscreen ssg5
0
johnyu1997
Asked:
johnyu1997
  • 3
1 Solution
 
jeff_01Commented:
Ping uses ICMP not HTTP so you would need to block ICMP requests as well I believe.
0
 
johnyu1997Author Commented:
You are not getting my point.  I am trying to allow access from certain ddns addresses.
0
 
johnyu1997Author Commented:
The problem is the dns setting on the firewall was pointed to the trusted interface instead of untrusted interface.  Working good now.
0
 
johnyu1997Author Commented:
Because the answer is the exact solution.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now