Solved

Sonicwall and XP

Posted on 2014-04-01
6
248 Views
Last Modified: 2014-04-01
Have a couple of XP machines that we have to have due to software they run that supports nothing newer, and want to allow them on the LAN, but not able to reach internet oubound or inbound. Is there a way to configure a sonicwall NSA240 to block inbound and outbound traffice from a specific internal IP (if i configure each with an internal static)
0
Comment
Question by:columbiaG
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 17

Accepted Solution

by:
TimotiSt earned 500 total points
ID: 39969936
Sure, just set up an object for the static IPs, and in the LAN->WAN rules, block them.
Incoming should be blocked by default (unless you have a NAT pointing to them).
0
 

Author Comment

by:columbiaG
ID: 39969988
Thanks, let me give that a try
0
 

Author Comment

by:columbiaG
ID: 39970043
ok, thanks that works...since no one else can change the ip of the machine, should not be a problem in blocking internet traffic to and from the unit...which is the only issue of having an XP unit on the lan.....still connects to lan, just no where else
0
Webinar June 1st - Attacking Ransomware  

The global cyberattack that corrupted hundreds of thousands of computer systems on May 12th had a face, name, & price tag that we’ve seen all too often in recent years: Ransomware. With the stakes – and costs – of a ransomware attack higher than ever, is your business prepared ?

 

Author Closing Comment

by:columbiaG
ID: 39970046
Thanks works well
0
 
LVL 17

Expert Comment

by:TimotiSt
ID: 39970080
Running XP after April won't be as bad as the hype, we're still running Win2000 boxes and there's no armageddon... :)
Make sure you have some kind of antivirus on it, which is not MS Security Essentials, to prevent surprises from USB and the LAN. Possibly some personal firewall too, if it's okay with your business software.
If you can isolate them on a separate vlan, even better.
0
 

Author Comment

by:columbiaG
ID: 39970135
oh yeah, running symantec SEP and have it on a vlan to keep it seperate
0

Featured Post

Create the perfect environment for any meeting

You might have a modern environment with all sorts of high-tech equipment, but what makes it worthwhile is how you seamlessly bring together the presentation with audio, video and lighting. The ATEN Control System provides integrated control and system automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This article is a how to to configure a UCS Ethernet-uplink portchannel via the console. It is easy to do and can be done quite quickly. In certain versions of the UCS manager the portchannel has issues coming up and this is a workaround. I am…
The password reset disk is often mentioned as the best solution to deal with the lost Windows password problem. In Windows 2008, 7, Vista and XP, a password reset disk can be easily created. But besides Windows 7/Vista/XP, Windows Server 2008 and ot…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question