<div>
create a separate policy for the user?<br />
either by his ip or username.
</div>


<div>
If AD integrated then set up a rule on the SW to allow that user to access the site via a whitelist that sits higher in the rule set than the blacklist.<br />
<br />
If not AD integrated, then set a DHCP reservation in place for that user's PC, Add a Network Address object using that IP, and set up a whitelist rule as per above and make sure it sits higher (lower number) in the rules list.
</div>


<div>
you ca also use a MAC object to apply a policy to.<br />
So no need for static DHCP
</div>


<div>
so if I was to add a separate policy for an ip would I add the user's IP address as &quot;Lan Interface IP&quot;?
</div>


mkramer777

<div>
LAN Interface IP is a built in object that contains the IP address of the SonicWall itself.
</div>


<div>
Is this the right area to setup a 2nd policy? &nbsp;Have not done this before. &nbsp;Where do I find MAC for address object?<br />
<a href="https://filedb.experts-exchange.com/incoming/2018/11_w48/1405409/Screen-Shot-2018-11-29-at-12.57.41-P.png" target="_blank" class="file-inline" title="1 (45 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>Screen-Shot-2018-11-29-at-12.57.41-P.png</a>
</div>


Screen-Shot-2018-11-29-at-12.57.41-P.png

<div>
source address would be the object to be created<br />
<br />
go to network&gt;address objects, add a new one of type mac.
</div>


<div>
OK. &nbsp;Also, (and not sure if I need to open a new question for this or not) &nbsp;I need to open port 1935 on the firewall. &nbsp;What are the steps to do this?
</div>


<div>
what do you need the port for?<br />
1935 is adobe flash media server, are you hosting that?<br />
<a href="https://www.speedguide.net/port.php?port=1935" rel="ugc">https://www.speedguide.net/port.php?port=1935</a><br />
<br />
unless you have restricted LAN to WAN firewall rules, you don't need to open any ports outbound.
</div>


<div>
It is an auction site which uses flash that no one in the network can access. &nbsp; &nbsp;See screenshot<br />
<a href="https://filedb.experts-exchange.com/incoming/2018/11_w48/1405417/Screen-Shot-2018-11-29-at-11.37.44-A.png" target="_blank" class="file-inline" title="1 (139 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>Screen-Shot-2018-11-29-at-11.37.44-A.png</a>
</div>


Screen-Shot-2018-11-29-at-11.37.44-A.png

<div>
SonicWalls by default do not block out bound traffic.<br />
<br />
but if you create a service object for TCP 1935, you can use that I a LAN to WAN firewall rule.
</div>


<div>
<div class="content wysiwyg-content">
Have a SonicWall TZ600. &nbsp;I have facebook.com in the custom forbidden domains. &nbsp;I want to give access to facebook.com to 1 user on the network. &nbsp;How would I do this?
</div>
</div>


Have a SonicWall TZ600.  I have facebook.com in the custom forbidden domains.  I want to give access to facebook.com to 1 user on the network.  How would I do this?

Add a computer to access a custom forbidden domain on SonicWall firewall

Networking is the process of connecting computing devices, peripherals and terminals together through a system that uses wiring, cabling or radio waves that enable their users to communicate, share information and interact over distances. Often associated are issues regarding operating systems, hardware and equipment, cloud and virtual networking, protocols, architecture, storage and management.