Solved

Sonicwall and XP

Posted on 2014-04-01
6
251 Views
Last Modified: 2014-04-01
Have a couple of XP machines that we have to have due to software they run that supports nothing newer, and want to allow them on the LAN, but not able to reach internet oubound or inbound. Is there a way to configure a sonicwall NSA240 to block inbound and outbound traffice from a specific internal IP (if i configure each with an internal static)
0
Comment
Question by:columbiaG
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 17

Accepted Solution

by:
TimotiSt earned 500 total points
ID: 39969936
Sure, just set up an object for the static IPs, and in the LAN->WAN rules, block them.
Incoming should be blocked by default (unless you have a NAT pointing to them).
0
 

Author Comment

by:columbiaG
ID: 39969988
Thanks, let me give that a try
0
 

Author Comment

by:columbiaG
ID: 39970043
ok, thanks that works...since no one else can change the ip of the machine, should not be a problem in blocking internet traffic to and from the unit...which is the only issue of having an XP unit on the lan.....still connects to lan, just no where else
0
Ready to trade in that old firewall?

Whether you need to trade-up to a shiny new Firebox or just ready to upgrade from whatever appliance you're using now, WatchGuard has the right appliance for you! Find your perfect Firebox today with appliance sizing tool!

 

Author Closing Comment

by:columbiaG
ID: 39970046
Thanks works well
0
 
LVL 17

Expert Comment

by:TimotiSt
ID: 39970080
Running XP after April won't be as bad as the hype, we're still running Win2000 boxes and there's no armageddon... :)
Make sure you have some kind of antivirus on it, which is not MS Security Essentials, to prevent surprises from USB and the LAN. Possibly some personal firewall too, if it's okay with your business software.
If you can isolate them on a separate vlan, even better.
0
 

Author Comment

by:columbiaG
ID: 39970135
oh yeah, running symantec SEP and have it on a vlan to keep it seperate
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
Every server (virtual or physical) needs a console: and the console can be provided through hardware directly connected, software for remote connections, local connections, through a KVM, etc. This document explains the different types of consol…
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
Suggested Courses

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question