Solved

Restrict access by ddns on firewall

Posted on 2014-01-02
4
355 Views
Last Modified: 2014-01-09
I have a webserver with an external ip behind a firewall but I don't want everybody to have access on it.  I am thinking of setting up ddns on the site that I would allow access to then I will restrict access based on these ddns on the firewall.  Seems perfect but when I put these policies in, the firewall does not detect those ddns address but I can ping it.  The policy is

xyz.domain.com (untrust)       x.x.x.x (external true ip - trust)        http (service)


If I change the untrust to any, it works fine.  If I put this ddns address in, the policy greys out and it searches very slow.

My firewall is a netscreen ssg5
0
Comment
Question by:johnyu1997
  • 3
4 Comments
 
LVL 9

Expert Comment

by:jeff_01
Comment Utility
Ping uses ICMP not HTTP so you would need to block ICMP requests as well I believe.
0
 

Author Comment

by:johnyu1997
Comment Utility
You are not getting my point.  I am trying to allow access from certain ddns addresses.
0
 

Accepted Solution

by:
johnyu1997 earned 0 total points
Comment Utility
The problem is the dns setting on the firewall was pointed to the trusted interface instead of untrusted interface.  Working good now.
0
 

Author Closing Comment

by:johnyu1997
Comment Utility
Because the answer is the exact solution.
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Suggested Solutions

I previously wrote an article addressing the use of UBCD4WIN and SARDU. All are great, but I have always been an advocate of SARDU. Recently it was suggested that I go back and take a look at Easy2Boot in comparison.
If your app took Google’s lash recently, here are the 5 most likely reasons.
The viewer will learn how to set up a document for the web and print and the recommended PPI for printing.
The viewer will learn how to successfully download and install the SARDU utility on Windows 7, without downloading adware.

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now