SSi Service Strategies Inc.

Access Rules

 
Home
Up
Information Request
Evaluation Request
Site Contents
Contact SSi
Glossary of Terms
Site search
Notices

 

 
SSi

Network Access Rules

Network Access Rules Simplify Administration

Network access rules allow the administrator to extend firewall functions. For example, a rule may be created which blocks all traffic of a certain type, such as Internet Chat (IRC), from the LAN to the Internet; another rule may be created which gives Internet users access to a server on the LAN, such as the organization's public Web server. Operating below the network layer and examining each packet, stateful packet filtering passes traffic to the destination based on network access rules. These rules restrict packet flow protecting the network and the systems connected to the network from unnecessary and potentially malicious traffic and allows extremely fine-grained control over network traffic based on IP address and port.

LAN Out

If the LAN Out check box is selected, users on your LAN are able to access that service on the Internet. Otherwise, they are blocked from accessing that service.

DMZ In

If a DMZ In check box is selected, users on the Internet can access that service on the DMZ. Otherwise, they are blocked from accessing that service on the DMZ.

Public LAN Server

A Public LAN Server is a LAN server designated to receive inbound traffic for a specific service, such as Web or e-mail. You can define a Public LAN Server by entering the server's IP address in the Public LAN Server field for the appropriate service.

Custom Rules

The SonicWALL evaluates the source IP address, the destination IP address, and the service type when determining whether to allow or deny traffic. Custom rules take precedence and override the SonicWALL default rules. By default, the SonicWALL blocks all traffic from the Internet to the LAN and allows all traffic from the LAN to the Internet. Custom rules can be created to modify the default rules. For example, rules can be created for the following purposes:

bullet

Allow traffic from the Internet to a mail server on the LAN.

bullet

Restrict users on the LAN from using a specified service, such as QuickTime.

bullet

Allow specified IP addresses on the Internet to access a sensitive server on the LAN.

To learn more about the SonicWALL firewall and its components and features, please visit our web site dedicated to SonicWALL by clicking on the button below.

 

  If you would like to request additional information on a subject or evaluate a product or service, please click on the appropriate button below.
   
 

 

 

Service Strategies Inc.

2392 Mount Vernon Rd

Dunwoody, GA 30338-3092

678-441-0020   800-662-1615

assist@ssimail.com
 
 

Copyright © 1998-2002 Service Strategies Inc. All rights reserved.
Revised: November 20, 2003.