Sonicwall and XP

Have a couple of XP machines that we have to have due to software they run that supports nothing newer, and want to allow them on the LAN, but not able to reach internet oubound or inbound. Is there a way to configure a sonicwall NSA240 to block inbound and outbound traffice from a specific internal IP (if i configure each with an internal static)
columbiaGAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
TimotiStConnect With a Mentor Datacenter TechnicianCommented:
Sure, just set up an object for the static IPs, and in the LAN->WAN rules, block them.
Incoming should be blocked by default (unless you have a NAT pointing to them).
0
 
columbiaGAuthor Commented:
Thanks, let me give that a try
0
 
columbiaGAuthor Commented:
ok, thanks that works...since no one else can change the ip of the machine, should not be a problem in blocking internet traffic to and from the unit...which is the only issue of having an XP unit on the lan.....still connects to lan, just no where else
0
Firewall Management 201 with Professor Wool

In this whiteboard video, Professor Wool highlights the challenges, benefits and trade-offs of utilizing zero-touch automation for security policy change management. Watch and Learn!

 
columbiaGAuthor Commented:
Thanks works well
0
 
TimotiStDatacenter TechnicianCommented:
Running XP after April won't be as bad as the hype, we're still running Win2000 boxes and there's no armageddon... :)
Make sure you have some kind of antivirus on it, which is not MS Security Essentials, to prevent surprises from USB and the LAN. Possibly some personal firewall too, if it's okay with your business software.
If you can isolate them on a separate vlan, even better.
0
 
columbiaGAuthor Commented:
oh yeah, running symantec SEP and have it on a vlan to keep it seperate
0
All Courses

From novice to tech pro — start learning today.